Vulnerabilities

CVE-2020-11454

by Fred · 02/04/2020

Microstrategy Web 10.4 is vulnerable to Stored XSS in the HTML Container and Insert Text features in the window, allowing for the creation of a new dashboard. In order to exploit this vulnerability, a user needs to get access to a shared dashboard or have the ability to create a dashboard on the application.

Date published : 2020-04-02

http://seclists.org/fulldisclosure/2020/Apr/1

http://packetstormsecurity.com/files/157068/MicroStrategy-Intelligence-Server-And-Web-10.4-XSS-Disclosure-SSRF-Code-Execution.html

Similar

Tags: Cybersecurity Alert