/LoadFrame in Zoho ManageEngine AD Manager Plus build 6590 - 6613 allows attackers to conduct URL Redirection attacks via the src parameter, resulting in a bypass of CSRF protection, or potentially masquerading a malicious URL as trusted.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-02-07T17:00:00
Updated: 2024-08-05T20:51:32.285Z
Reserved: 2017-12-11T00:00:00
Link: CVE-2017-17552
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-02-07T17:29:01.183
Modified: 2024-11-21T03:18:08.933
Link: CVE-2017-17552
Redhat
No data.