Vulnerabilities

CVE-2021-30056

by Fred · 05/04/2021

Knowage Suite before 7.4 is vulnerable to reflected cross-site scripting (XSS). An attacker can inject arbitrary web script in /restful-services/publish via the ‘EXEC_FROM’ parameter that can lead to data leakage.

Date published : 2021-04-05

https://github.com/piuppi/Proof-of-Concepts/blob/main/Engineering/XSS-KnowageSuite.md

Similar

Tags: Cybersecurity Alert