June 27, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
North Korean APT Deploys npm Supply Chain Malware for Crypto Theft – Active IOCs
June 27, 2025IBM i Flaw Enables Privilege Escalation by Attackers
June 27, 2025North Korean APT Deploys npm Supply Chain Malware for Crypto Theft – Active IOCs
June 27, 2025IBM i Flaw Enables Privilege Escalation by Attackers
June 27, 2025
Severity
High
Analysis Summary
CVE-2025-5966 CVSS:8.1
Zoho ManageEngine Exchange reporter Plus is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the Attachments by File Name Keyword report. A remote attacker could exploit this vulnerability using a specially crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.
CVE-2025-5366 CVSS:8.1
Zoho ManageEngine Exchange reporter Plus is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the Attachments by the Folder-wise Read Mails with Subject report. A remote attacker could exploit this vulnerability using a specially crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.
Impact
- Cross-Site Scripting
Indicators of Compromise
CVE
CVE-2025-5966
CVE-2025-5366
Affected Vendors
Zoho
Affected Products
- Zoho ManageEngine Exchange Reporter Plus - 5722
Remediation
Upgrade to the latest version of Exchange Reporter Plus, available from the Zoho ManageEngine Website.