Stored XSS (Cross-Site Scripting) Vulnerability in SolarWinds Orion PlatformID: oval:org.secpod.oval:def:67951 | Date: (C)2020-12-23 (M)2022-01-21 |
Class: VULNERABILITY | Family: windows |
The host is installed with SolarWinds Orion Platform 2019.4 Hotfix 5, 2020.2 or 2020.2 Hotfix 1 and is prone to a cross-site scripting vulnerability. A flaw is present in application, which fails to handle an unknown vector. Successful exploitation may lead to the Information Disclosure and Escalation of Privileges (takeover of administrator account).
Platform: |
Microsoft Windows Server 2019 |
Microsoft Windows 7 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows 10 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2016 |
Product: |
SolarWinds Orion Platform |