Sign in Subscribe

← All advisories

Unrated severityOSV Advisory· Published Jun 13, 2018· Updated Aug 5, 2024

CVE-2018-12355

CVE-2018-12355

Description

Knowage (formerly SpagoBI) 6.1.1 allows XSS via the name or description field to the "Olap Schemas' Catalogue" catalogue.

Affected products

2

Knowagelabs/Knowage ServerOSV
Range: knowage-server-6.1.1, v6.1.1
Knowagelabs/Knowagellm-fuzzy
Range: =6.1.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

medium.com/stolabs/security-issue-on-knowage-spagobi-ec539a68e55mitrex_refsource_MISC

News mentions

0

No linked articles in our index yet.