3 matches found
CVE-2022-42248
CVE-2022-42248 affects QlikView 12.60.2 in the QvsViewClient component, where a stored XSS vulnerability exists. The issue is described as a stored cross-site scripting flaw in the QvsViewClient functionality, with no explicit exploitation details provided in this dataset. Some connected advisori...
CVE-2015-3623
The CVE-2015-3623 entry documents an XXE vulnerability in QlikTech QlikView prior to version 11.20 SR12. The flaw occurs in the AccessPoint.aspx XML parser, allowing an unauthenticated remote attacker to perform server-side request forgery (SSRF) and read arbitrary files via specially crafted XML...
CVE-2021-41989
CVE-2021-41989 affects QlikView versions prior to 12.60.20100.0. The issue is described as creating a temporary file in a directory with insecure permissions, exposing local confidentiality, integrity, and availability concerns. The connected sources explicitly identify the vulnerable component a...