Bug
Reflected cross-site scripting (XSS) vulnerability in ArcGIS Server.
| Bug ID Number | BUG-000175692 |
|---|---|
| Submitted | April 9, 2025 |
| Last Modified | September 8, 2025 |
| Applies to | ArcGIS GIS Server |
| Version found | 11.4 |
| Operating System | N/A |
| Operating System Version | N/A |
| Status | In Product Plan |
Workaround
Disable the services directory per best practices.
Steps to Reproduce
Bug ID: BUG-000175692
Software:
- ArcGIS GIS Server
Get notified when the status of a bug changes
Discover more on this topic
Search for related information
Find training related to this topic
Explore ideas and give feedback
Get help from ArcGIS experts
Download the Esri Support App