3 matches found
CVE-2022-38191
There is an HTML injection issue in Esri Portal for ArcGIS versions 10.9.0 and below which may allow a remote, authenticated attacker to inject HTML into some locations in the home application...
CVE-2022-38191 HTML injection vulnerability in Portal for ArcGIS
There is an HTML injection issue in Esri Portal for ArcGIS versions 10.9.0 and below which may allow a remote, authenticated attacker to inject HTML into some locations in the home application...
CVE-2022-38191
CVE-2022-38191 affects Esri Portal for ArcGIS (versions 10.9.0 and earlier) with an HTML injection vulnerability in the home application that requires authentication. Connected sources corroborate HTML injection risk and indicate patches exist (ESRI 2022 Update 1) and advisories noting fixes in A...