3 matches found
CVE-2020-19587
Cross Site Scripting XSS vulnerability in configMap parameters in Yellowfin Business Intelligence 7.3 allows remote attackers to run arbitrary code via MIAdminStyles.i4 Admin UI...
CVE-2020-19587
Cross Site Scripting XSS vulnerability in configMap parameters in Yellowfin Business Intelligence 7.3 allows remote attackers to run arbitrary code via MIAdminStyles.i4 Admin UI...
CVE-2020-19587
CVE-2020-19587 denotes a Cross Site Scripting (XSS) vulnerability in Yellowfin Business Intelligence 7.3, originating from configMap parameters exposed via the MIAdminStyles.i4 Admin UI. The issue enables a remote attacker to run arbitrary code and has a CVSS v3.1 base score of 5.4 (Medium) with ...