CVE-2019-12540 | Zoho ManageEngine ServiceDesk Plus 10.5 WorkOrder.do Search cross site scripting (EUVD-2019-4135)
A vulnerability, which was classified as problematic, was found in Zoho ManageEngine ServiceDesk Plus 10.5. Affected by this vulnerability is an unknown functionality of the file WorkOrder.do. Such manipulation of the argument Search leads to cross site scripting.
This vulnerability is referenced as CVE-2019-12540. It is possible to launch the attack remotely. No exploit is available.