6 matches found
Esri Portal for ArcGIS < Security 2024 Update 2 Multiple Vulnerabilities
The version of Esri Portal for ArcGIS installed is missing Security 2024 Update 2. It is, therefore, affected by multiple vulnerabilities including: - There is a local file inclusion vulnerability in Esri Portal for ArcGIS 11.2. 11.1, 11.0 and 10.9.1 that may allow a remote, unauthenticated...
CVE-2024-25691
creationtimestamp| type| source ---|---|--- 2024-10-04 21:03:28+00:00| seen| https://t.me/cvedetector/7014...
CVE-2024-25691
There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 11.1 and below which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser...
CVE-2024-25691 BUG-000165286 - Reflected XSS in Portal for ArcGIS
There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 11.1 and below which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser...
CVE-2024-25691
Esri Portal for ArcGIS is affected by a reflected XSS in versions up to 11.1. A crafted link could cause arbitrary JavaScript execution in the victim’s browser. Affected versions include 10.8.1–11.1. Root cause is a cross-site scripting flaw in the portal’s handling of URL/link input. Practical i...
CVE-2024-25691 BUG-000165286 - Reflected XSS in Portal for ArcGIS
There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 11.1 and below which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser...