2 matches found
Cross site scripting
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 build 51029. The page "UserProperties.jsp" has reflected XSS via the ConnPoolName parameter...
CVE-2018-19769
CVE-2018-19769 affects InfoVista VistaPortal SE v5.1 (build 51029). The vulnerability is a reflected Cross-Site Scripting in the UserProperties.jsp page, exploitable via the ConnPoolName parameter. This can allow an attacker to inject arbitrary web script/HTML that may run in a victim’s browser, ...