VYPR

ArcGIS Web AppBuilder

by Esri

CVEs (1)

  • CVE-2025-67712MedDec 19, 2025
    risk 0.31cvss 4.7epss 0.00

    There is an HTML injection issue in Esri ArcGIS Web AppBuilder developer edition versions prior to 2.30 that allows a remote, unauthenticated attacker to potentially entice a user to click a link that causes arbitrary HTML to render in a victim's browser. There is no evidence of…