Cross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and earlier, allows remote unauthenticated attackers to execute arbitrary code via key parameter to the getGoogleExtraConfig task.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2020-15740 | Cross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and earlier, allows remote unauthenticated attackers to execute arbitrary code via key parameter to the getGoogleExtraConfig task. |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Sun, 05 Jul 2026 00:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2026-07-09T00:10:41.155Z
Reserved: 2020-08-13T00:00:00.000Z
Link: CVE-2020-22984
No data.
Status : Modified
Published: 2022-05-12T20:15:12.987
Modified: 2026-06-17T03:04:26.560
Link: CVE-2020-22984
No data.
OpenCVE Enrichment
No data.
Weaknesses
EUVD