2021-04-05 10:45:52
mitre
PUBLISHED
Knowage Suite before 7.4 is vulnerable to reflected cross-site scripting (XSS). An attacker can inject arbitrary web script in /restful-services/publish via the EXEC_FROM parameter that can lead to data leakage.