5 matches found
CVE-2013-7231
Cross-site scripting XSS vulnerability in the Mobile Content Server in ESRI ArcGIS for Server 10.1 and 10.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2013-5222...
ESRI ArcGIS未明跨站脚本漏洞
CVE ID:CVE-2013-7231 ArcGIS for Server软件平台让用户能够通过网络创建,管理和分发GIS服务,并以服务的形式支撑桌面软件应用,移动终端应用和网络地图应用等。 ArcGIS for Server移动内容服务器Mobile Content Server存在未明跨站脚本漏洞,允许通过验证的远程攻击者利用漏洞注入恶意脚本或HTML代码,当恶意数据被查看时可获取敏感信息或者劫持用户会话。 0 ESRI ArcGIS for Server 10.1 ESRI ArcGIS for Server 10.2 厂商补丁: ESRI -----...
CVE-2013-7231
Cross-site scripting XSS vulnerability in the Mobile Content Server in ESRI ArcGIS for Server 10.1 and 10.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2013-5222...
CVE-2013-7231
CVE-2013-7231 is an XSS vulnerability in ESRI ArcGIS for Server Mobile Content Server (ArcGIS for Server 10.1/10.2). Affected: Mobile Content Server; root cause: unvalidated inputs allowing remote authenticated users to inject script/HTML via unspecified vectors. Impact: potential information lea...
CVE-2013-7231
Cross-site scripting XSS vulnerability in the Mobile Content Server in ESRI ArcGIS for Server 10.1 and 10.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2013-5222...