Vulnerability CVE-2018-9163

Vulnerability CVE-2018-9163

Published: 2018-04-02

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
3.5/10	2.9/10	6.8/10

Affected software
Zohocorp -> Manageengine recovery manager plus

http://www.securityfocus.com/bid/103773

https://gurelahmet.com/cve-2018-9163-zoho-manageengine-recovery-manager-plus-5-3-build-5330-stored-cross-site-scripting-xss-vulnerability/

https://www.exploit-db.com/exploits/44666/

https://www.manageengine.com/ad-recovery-manager/release-notes.html#5350