3 matches found
CVE-2023-30968
One of Gotham Gaia services was found to be vulnerable to a stored cross-site scripting XSS vulnerability that could have allowed an attacker to bypass CSP and get a persistent cross site scripting payload on the stack...
CVE-2023-30968 Stored XSS in gaia
One of Gotham Gaia services was found to be vulnerable to a stored cross-site scripting XSS vulnerability that could have allowed an attacker to bypass CSP and get a persistent cross site scripting payload on the stack...
CVE-2023-30968
CVE-2023-30968 corresponds to a stored cross-site scripting (XSS) issue in Gotham Gaia services (Palantir Gotham Gaia). The vulnerability allows an attacker to bypass Content Security Policy (CSP) and inject a persistent XSS payload on the stack. Documents consistently describe it as a stored XSS...