Vulnerabilities

CVE-2021-30213

by Fred · 12/05/2021

Knowage Suite 7.3 is vulnerable to unauthenticated reflected cross-site scripting (XSS). An attacker can inject arbitrary web script in ‘/servlet/AdapterHTTP’ via the ‘targetService’ parameter.

Date published : 2021-05-12

https://github.com/piuppi/Proof-of-Concepts/blob/main/Engineering/XSS-KnowageSuite7-3_unauth.md

Similar

Tags: Cybersecurity Alert