Vulnerabilities > Elastic > Elastic APP Search > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-06-03 CVE-2020-7011 Cross-site Scripting vulnerability in Elastic APP Search
Elastic App Search versions before 7.7.0 contain a cross site scripting (XSS) flaw when displaying document URLs in the Reference UI.
network
low complexity
elastic CWE-79
6.1
6.1