Microstrategy Web, version 7, does not sufficiently encode user-controlled inputs, resulting in a Cross-Site Scripting (XSS) vulnerability via the admin/admin.asp ShowAll parameter. NOTE: this is a deprecated product.
CPE | Name | Operator | Version |
---|---|---|---|
microstrategy_web | eq | 7 |