Accela Civic Platform up to and including 20.1 allows ssoAdapter/logoutAction.do successURL XSS. NOTE: the vendor states "there are configurable security flags and we are unable to reproduce them with the available information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
accela civic platform |