CNNVD-202512-3792 Information
Dec 19, 2025
cve
CNNVD ID
CNNVD-202512-3792
Related CVE
- CNNVD Published: 2025-12-19
Description (Chinese)
Esri ArcGIS Web AppBuilder是美国Esri公司的一个Web应用程序构建工具。 Esri ArcGIS Web AppBuilder developer edition 2.30之前版本存在跨站脚本漏洞,该漏洞源于HTML注入,可能导致任意HTML渲染。
Description (English)
Esri ArcGIS Web AppBuilder is a Web application builder for the United States company Esri. Esri ArcGIS Web AppBuilder developer evaluation 2.30 had a cross-site script loophole, which originated from an HTML injection and could lead to any type of HTML rendering.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
Etherpad
Published
2025-12-19
Last Modified
2026-02-24
References
https://support.esri.com/en-us/knowledge-base/deprecation-arcgis-web-appbuilder-000036340
Patch
https://support.esri.com/en-us/knowledge-base/deprecation-arcgis-web-appbuilder-000036340
Share on: