Cross-site scripting (XSS) vulnerability in ViewAction in Pentaho BI Server 1.7.0.1062 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the outputType parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pentaho bi server 1.2.0 |
||
pentaho bi server |
||
pentaho bi server 1.6.0 |