A cross site scripting vulnerability exists in some map service configurations of ArcGIS Server versions 10.8.1 and 10.7.1. Specifically crafted web requests can execute arbitrary JavaScript in the context of the victim's browser.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
esri arcgis server 10.8.1 |
||
esri arcgis server 10.7.1 |