CVE Published: 01/10/2021 |
CVE Updated: 16/09/2024 |
CVE Year: 2021 Source: Esri |
Vendor: Esri |
Product: Portal for ArcGIS Status : PUBLISHED
CVE-2021-29109 Description
A reflected XSS vulnerability in Esri Portal for ArcGIS version 10.9 and below may allow a remote attacker able to convince a user to click on a crafted link which could potentially execute arbitrary JavaScript code in the user’s browser.