AI Score
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Oxygen XML Web Author v26.0.0 and older and Oxygen Content Fusion v6.1 and older are vulnerable to Cross-Site Scripting (XSS) for malicious URLs.
www.oxygenxml.com/security/advisory/SYNC-2024-020601.html