Lucene search
China National Vulnerability DatabaseCNVD-2022-05537HistoryOct 08, 2021 - 12:00 a.m.
Esri Portal for ArcGIS Cross-Site Scripting Vulnerability
2021-10-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
44.9%
Esri Portal for ArcGIS is a Web-oriented, enterprise-class software platform for providing geolocation services from Esri, Inc. A cross-site scripting vulnerability exists in Esri Portal for ArcGIS 10.9 and prior versions, which stems from the applicationβs lack of validation of user input and filtering of data at the input location, and can be exploited by attackers to The vulnerability can be exploited to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| esri portal for arcgis | le | 10.9 |
Related
prion
prion
Cross site scripting
2021-10-01 15:15:00
cvelist
cvelist
nvd
nvd
CVE-2021-29109
2021-10-01 15:15:07
cve
cve
CVE-2021-29109
2021-10-01 15:15:07