CVE-2013-6233
Cross-site scripting (XSS) vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via the Description field in the "Short document metadata."
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0486 (4.9%)
Percentil: 89.6%
EPSS: 2026-05-06
Afecta
eng:spagobiDescripción técnica
Cross-site scripting (XSS) vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via the Description field in the "Short document metadata."
Publicada: 9/3/2014, 13:16:56
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://packetstormsecurity.com/files/125496
- http://www.exploit-db.com/exploits/32039
- http://www.securityfocus.com/archive/1/531322/100/0/threaded
- http://www.securityfocus.com/bid/65915
- https://exchange.xforce.ibmcloud.com/vulnerabilities/91506
- http://packetstormsecurity.com/files/125496
- http://www.exploit-db.com/exploits/32039
- http://www.securityfocus.com/archive/1/531322/100/0/threaded