CVE-2024-41150: Stored XSS

First published: Fri Aug 23 2024(Updated: )

An Stored Cross-site Scripting vulnerability in request module affects Zohocorp ManageEngine ServiceDesk Plus, ServiceDesk Plus MSP and SupportCenter Plus.This issue affects ServiceDesk Plus versions: through 14810; ServiceDesk Plus MSP: through 14800; SupportCenter Plus: through 14800.

Credit: 0fc0942c-577d-436f-ae8e-945763c79b02

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/weakness
• agent/title
• agent/references
• agent/type
• agent/description
• agent/first-publish-date
• agent/author
• agent/event
• collector/mitre-cve
• source/MITRE
• collector/nvd-api
• source/NVD
• agent/software-canonical-lookup
• agent/last-modified-date
• agent/severity
• agent/softwarecombine
• agent/tags
• vendor/zohocorp
• canonical/zohocorp manageengine servicedesk plus
• version/zohocorp manageengine servicedesk plus/14.7
• version/zohocorp manageengine servicedesk plus/14.8-14810
• canonical/zohocorp manageengine servicedesk plus msp
• version/zohocorp manageengine servicedesk plus msp/14.7
• version/zohocorp manageengine servicedesk plus msp/14.8-14800
• canonical/zohocorp manageengine supportcenter plus
• version/zohocorp manageengine supportcenter plus/14.7
• version/zohocorp manageengine supportcenter plus/14.8-14800