In SecurityCenter versions before 5.7.0, a cross-site scripting (XSS) issue could allow an authenticated malicious user to inject JavaScript code into an image filename parameter within the Reports feature area. Properly updated input validation techniques have been implemented to correct this issue.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tenable securitycenter |