Persistent XSS Vulnerability in CUBA Platform's Reporting Addon

Persistent XSS Vulnerability in CUBA Platform's Reporting Addon

CVE-2018-20663 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

The Reporting Addon (aka Reports Addon) through 2019-01-02 for CUBA Platform through 6.10.x has Persistent XSS via the "Reports > Reports" name field.

Learn more about our Web Application Penetration Testing UK.