undefinedmode/CVE-2019-12453

Releases0

Authenticated XSS in Microstrategy Web - Versions prior to 10.1 patch 10

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-12453 ↗	Jul 19, 2019Friday, 19 July 2019, 17:15	—	4.3 MEDIUM
In MicroStrategy Web before 10.1 patch 10, stored XSS is possible in the FLTB parameter due to missing input validation.