Vulnerabilities > Palantir > Apollo Autopilot > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-09-27 CVE-2023-30959 Cross-site Scripting vulnerability in Palantir Apollo Autopilot
In Apollo change requests, comments added by users could contain a javascript URI link that when rendered will result in an XSS that require user interaction.
network
low complexity
palantir CWE-79
5.4