Bug
There is a reflected cross-site scripting (XSS) vulnerability in Portal for ArcGIS.
| Bug ID Number | BUG-000154236 |
|---|---|
| Submitted | December 6, 2022 |
| Last Modified | July 18, 2023 |
| Applies to | ArcGIS Online |
| Version found | N/A |
| Operating System | N/A |
| Operating System Version | N/A |
| Version Fixed | Planned Release Date: Q1 2023 |
| Status | Fixed |
Additional Information
The Portal for ArcGIS Security 2023 Update 1 Patch is now live on the support site. This is a four-version patch for 10.7.1, 10.8.1, 10.9.1, and 11.0 which addresses both security and non-security issues. Refer to: https://support.esri.com/en-us/patches-updates/2023/portal-for-arcgis-security-2023-update-1-patch-8095. Refer to the 'Issues addressed with this patch' section of the patch download page for details on which versions are affected and resolved for each defect.Workaround
The Portal for ArcGIS Security 2023 Update 1 Patch is now live on the support site. Refer to: https://support.esri.com/en-us/patches-updates/2023/portal-for-arcgis-security-2023-update-1-patch-8095.
Steps to Reproduce
Bug ID: BUG-000154236
Software:
- ArcGIS Online
Get help from ArcGIS experts
Download the Esri Support App
Discover more on this topic
Search for related information
Find training related to this topic
Explore ideas and give feedback