1 results (0.001 seconds)
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 1
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 1CVE-2020-19586
https://notcve.org/view.php?id=CVE-2020-19586
Incorrect Access Control issue in Yellowfin Business Intelligence 7.3 allows remote attackers to escalate privilege via MIAdminStyles.i4 Admin UI. Un problema de Control de Acceso Incorrecto en Yellowfin Business Intelligence versión 7.3, permite a atacantes remotos escalar privilegios por medio de la Interfaz de Usuario de Administración MIAdminStyles.i4 • https://github.com/Deepak983/CVE-2020-19586/blob/main/Stored%20XSS%20in%20MIAdminStyles.i4%20through%20privileges%20escalation.pdf • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •