Security Advisory

CVE-2018-18776

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-11-01 17:00:00

Last updated 2024-08-05 11:16:00

Assigner mitre

State PUBLISHED

Description

Microstrategy Web, version 7, does not sufficiently encode user-controlled inputs, resulting in a Cross-Site Scripting (XSS) vulnerability via the admin/admin.asp ShowAll parameter. NOTE: this is a deprecated product.

← Browse all CVEs View on cve.org ↗