Infovista VistaPortal SE Cross-Site Scripting Vulnerability (CNVD-2019-07235)
Infovista VistaPortal SE is a Web-based application from Infovista USA. A cross-site scripting vulnerability exists in the RolePermissions.jsp page in Infovista VistaPortal SE version 5.1 build 51029, which can be exploited by a remote attacker with the 'ConnPoolName' parameter to inject arbitrar...