2 matches found
CVE-2020-9524
Cross Site scripting vulnerability on Micro Focus Enterprise Server and Enterprise developer, affecting all versions prior to version 5.0 Patch Update 8. The vulnerability could allow an attacker to trigger administrative actions when an administrator viewed malicious data left by the attacker...
CVE-2020-9524
Micro Focus Enterprise Server and Enterprise Developer (all versions prior to 5.0 Patch Update 8) are affected by a Cross-Site Scripting (XSS) vulnerability in the web application layer. The root cause is insufficient validation of client-side data, enabling both stored and reflected XSS scenario...