CNNVD-202507-1522 Information

CNNVD ID

CNNVD-202507-1522

Related CVE

CVE-2025-28245

• CNNVD Published: 2025-07-10

Description (Chinese)

Alteryx Server是Alteryx公司的一个云托管或自托管的应用程序。用于发布、共享和执行工作流。 Alteryx Server 2023.1.1.460版本存在安全漏洞，该漏洞源于通知主体可能允许远程攻击者注入任意Web脚本或HTML。

Description (English)

Alteryx Server is a cloud-based or self-hosted application of Alteryx. For publication, sharing and implementation streams. Alteryx Server version 2023.1.1.460 contains a security loophole, which stems from the fact that the subject of the notification may allow remote assailants to inject any kind of Web script or HTML.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

Alteryx

Published

2025-07-10

Last Modified

2026-02-24

References

https://alteryx.com https://gist.github.com/DylanGrl/5e0ac3924f4d939e9c1ebb8632f2851b https://nvd.nist.gov/vuln/detail/CVE-2025-28245

Patch

https://help.alteryx.com/current/en/server.html#server-7112146