Esri Portal for ArcGIS is a Web-oriented, enterprise-class software platform for providing geolocation services from Esri, Inc. A cross-site scripting vulnerability exists in Esri Portal for ArcGIS 10.9 and prior versions, which stems from the applicationβs lack of validation of user input and filtering of data at the input location, and can be exploited by attackers to The vulnerability can be exploited to execute JavaScript code on the client side.
CPE | Name | Operator | Version |
---|---|---|---|
esri portal for arcgis | le | 10.9 |