Cross site scripting

A vulnerability has been identified in Polarion ALM All versions V21 R2 P2, Polarion WebClient for SVN All versions. A cross-site scripting is present due to improper neutralization of data sent to the web page through the SVN WebClient in the affected product. An attacker could exploit this to...

CVE-2021-44478

CVE-2021-44478 affects Siemens Polarion ALM and its SVN WebClient: Cross-Site Scripting due to improper neutralization of data sent to web pages in the SVN WebClient. Affected: Polarion ALM (all versions prior to v21 R2 P2) and Polarion WebClient for SVN (all versions). Impact: could allow an att...

Siemens Polarion Subversion Webclient 跨站脚本漏洞

Polarion WebClient for SVN is an SVN client. A cross-site scripting vulnerability exists in Siemens Polarion ALM, which can be exploited by an attacker to execute arbitrary code and extract sensitive information by sending a crafted link to a user with administrator privileges...

Siemens Polarion webclient cross-site scripting vulnerability (CNVD-2019-44255)

Siemens Polarion is a suite of application lifecycle management software from Siemens, Germany. The software supports end-to-end enterprise application development in a unified, modular, browser-based software environment. webclient is one of the web-based client programs. A cross-site scripting...

CVE-2019-13935

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in webclient of Siemens AG Polarion could allow an attacker to exploit a reflected XSS vulnerability. This issue affects: Siemens AG Polarion All versions 19.2...

CVE-2019-13934

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in webclient of Siemens AG Polarion could allow an attacker to exploit a reflected XSS vulnerability. This issue affects: Siemens AG Polarion All versions 19.2...