Esri Arcgis Quickcapture vulnerabilities
2 known vulnerabilities affecting esri/arcgis_quickcapture.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2022-38201P4MEDIUMCVSS 6.1≥ 10.8.1, ≤ 10.9.12022-11-15
CVE-2022-38201 [MEDIUM] CWE-601 CVE-2022-38201: An unvalidated redirect vulnerability exists in Esri Portal for ArcGIS Quick Capture Web Designer ve
An unvalidated redirect vulnerability exists in Esri Portal for ArcGIS Quick Capture Web Designer versions 10.8.1 to 10.9.1. A remote, unauthenticated attacker can potentially induce an unsuspecting authenticated user to access an an attacker controlled domain.
nvd
CVE-2022-38209P4MEDIUMCVSS 6.1≥ Portal for ArcGIS, ≤ 10.9.12022-12-29
CVE-2022-38209 [MEDIUM] CWE-79 CVE-2022-38209: There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 10.9.1 and below which may
There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 10.9.1 and below which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could execute arbitrary JavaScript code in the victim’s browser.
nvd