2 matches found
CVE-2020-24670
The Dashboard Editor in Hitachi Vantara Pentaho through 7.x - 8.x contains a reflected Cross-site scripting vulnerability, which allows an authenticated remote users to execute arbitrary JavaScript code. Specifically, the vulnerability lies in the 'type' attribute of 'dashboardXml' parameter...
CVE-2020-24670
CVE-2020-24670 concerns the Dashboard Editor in Hitachi Vantara Pentaho (7.x–8.x). The vulnerability is a reflected Cross-site Scripting flaw in the dashboardXml parameter’s type attribute, exploitable by an authenticated remote user to execute arbitrary JavaScript. The issue is mitigated by upda...