MicroStrategy Web SDK is a JavaScript library from MicroStrategy, Inc. It interacts with different CARTO APIs to build custom applications on top of deck.gl that utilize vector rendering. MicroStrategy Web SDK version 10.11 and earlier versions contain a cross-site scripting vulnerability that stems from missing filtering and escaping of the searchString of the wikiScrapper task, which could be exploited by an attacker to The vulnerability can be exploited to execute arbitrary code.
CPE | Name | Operator | Version |
---|---|---|---|
microstrategy web sdk | le | 10.11 |