User Enumeration Vulnerability in Zoho ManageEngine ServiceDesk Plus 10

User Enumeration Vulnerability in Zoho ManageEngine ServiceDesk Plus 10

CVE-2019-15045 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

AjaxDomainServlet in Zoho ManageEngine ServiceDesk Plus 10 allows User Enumeration. NOTE: the vendor's position is that this is intended functionality

Learn more about our User Device Pen Test.