2 matches found
CVE-2024-25709
creationtimestamp| type| source ---|---|--- 2025-02-01 17:28:08+00:00| seen| Telegram/sJyJmWOpeiiXws9o5B8E323wi-NFpLtkh5Ziv-RKIhpK3Jf...
CVE-2024-25709 Self-XSS style in move item dialog
There is a stored Cross‑Site Scripting XSS vulnerability in Esri Portal for ArcGIS versions 11.2 and below that may allow a remote, authenticated attacker to create a crafted link that can be saved as a new location when moving an existing item, which could potentially execute arbitrary JavaScrip...