OpenText Performance Center vulnerable to XSS Attacks
CVE-2022-26328

Currently unrated

Key Information:

Vendor: Opentext
Status: Performance Center
Vendor: CVE Published:; 21 August 2024

Summary

An XSS vulnerability exists in OpenText Performance Center, where improper neutralization of input during web page generation allows attackers to inject malicious scripts into web pages viewed by users. This flaw impacts users of Performance Center 12.63, creating a potential security risk where unauthorized scripts can lead to data theft or manipulation. It is essential for organizations utilizing this product to implement proper input validation measures to safeguard against such attacks.

Affected Version(s)

Performance Center Windows 12.63

References

https://portal.microfocus.com/s/article/KM000032041?langu...

Timeline

Vulnerability published
Aug 21, 2024
Vulnerability Reserved
Feb 28, 2022