HTML Injection Vulnerability in Alteryx Server

CVE-2025-28243

What is CVE-2025-28243?

An HTML injection vulnerability exists in Alteryx Server v.2023.1.1.460, which allows attackers to inject malicious HTML scripts through crafted inputs. This vulnerability poses a significant risk as it can lead to unauthorized access or manipulation of user-facing web pages, potentially compromising sensitive data and user safety.

References