cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-41150,https://securityvulnerability.io/vulnerability/CVE-2024-41150,"Stored Cross-site Scripting vulnerability in ManageEngine ServiceDesk Plus, ServiceDesk Plus MSP and SupportCenter Plus","A stored cross-site scripting vulnerability exists in the request module within Zohocorp's ManageEngine ServiceDesk Plus, ServiceDesk Plus MSP, and SupportCenter Plus applications. This vulnerability allows an attacker to inject malicious scripts into web pages that are viewed by other users. If exploited, this can lead to unauthorized actions being performed on behalf of the victim or extraction of sensitive data. It affects specific versions of ServiceDesk Plus, ServiceDesk Plus MSP, and SupportCenter Plus, necessitating immediate action from users to mitigate security risks.",Manageengine,"Servicedesk Plus,Servicedesk Plus Msp,Supportcenter Plus",6.1,MEDIUM,0.013330000452697277,false,,false,false,false,,,false,false,,2024-08-23T14:08:17.169Z,0
CVE-2024-27314,https://securityvulnerability.io/vulnerability/CVE-2024-27314,Zoho ServiceDesk Plus vulnerable to stored XSS,"Zoho ManageEngine ServiceDesk Plus versions below 14730, ServiceDesk Plus MSP below 14720 and SupportCenter Plus below 14720 are vulnerable to stored XSS in the Custom Actions menu on the request details. This vulnerability can be exploited only by the SDAdmin role users.",Manageengine,"Servicedesk Plus, Servicedesk Plus Msp, Supportcenter Plus",2.4,LOW,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-27T07:03:13.441Z,0
CVE-2008-1432,https://securityvulnerability.io/vulnerability/CVE-2008-1432,,"Cross-site scripting (XSS) vulnerability in SolutionSearch.do in ManageEngine SupportCenter Plus 7.0.0 allows remote attackers to inject arbitrary web script or HTML via the searchText parameter, a related issue to CVE-2008-1299.  NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.",Manageengine,Supportcenter Plus,,,0.001509999972768128,false,,false,false,false,,,false,false,,2008-03-20T18:44:00.000Z,0