Security Advisory

CVE-2021-38138

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-05 15:59:00

Last updated 2024-08-04 01:37:14

Assigner mitre

State PUBLISHED

Description

OneNav beta 0.9.12 allows XSS via the Add Link feature. NOTE: the vendors position is that there intentionally is not any XSS protection at present, because the attack risk is largely limited to a compromised account; however, XSS protection is planned for a future release.

← Browse all CVEs View on cve.org ↗