Vulnerabilities > Veeam > ONE Reporter > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-07-27 CVE-2019-14298 Cross-site Scripting vulnerability in Veeam ONE Reporter 9.5.0.3201
Veeam ONE Reporter 9.5.0.3201 allows XSS via a crafted Description(config) field to addDashboard or editDashboard in CommonDataHandlerReadOnly.ashx.
network
low complexity
veeam CWE-79
5.4
2019-07-27 CVE-2019-14297 Cross-site Scripting vulnerability in Veeam ONE Reporter 9.5.0.3201
Veeam ONE Reporter 9.5.0.3201 allows XSS via the Add/Edit Widget with a crafted Caption field to setDashboardWidget in CommonDataHandlerReadOnly.ashx.
network
low complexity
veeam CWE-79
5.4