Unauthenticated Stored XSS in FME Server versions 2019.2 and 2020.0 Beta allows a remote attacker to gain admin privileges by injecting arbitrary web script or HTML via the login page. The XSS is executed when an administrator accesses the logs.
Paid content will be excluded from the download. |
Filter |
|
Matches : 248268 | Download | Alert* |
© SecPod Technologies