Page 6 of 51 results (0.008 seconds)
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2014-5121 – ArcGIS for Server 10.1.1 XSS / Open Redirect
https://notcve.org/view.php?id=CVE-2014-5121
21 Aug 2014 — Multiple cross-site scripting (XSS) vulnerabilities in ESRI ArcGIS for Server 10.1.1 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters. Múltiples vulnerabilidades de XSS en ESRI ArcGIS for Server 10.1.1 permiten a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de parámetros no especificados. ArcGIS for Server version 10.1.1 suffers from cross site scripting and open redirect vulnerabilities. • http://packetstormsecurity.com/files/127959/ArcGIS-For-Server-10.1.1-XSS-Open-Redirect.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •