XSS in Opentext Content Management
CVE-2024-12863
Stored XSS in Discussions in OpenText Content Management CE 20.2 to 25.1 on Windows and Linux allows authenticated malicious users to inject code into the system.
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.003 (23.1th percentile) — read the EPSS interpretation.
Affected products
- Opentext Content Management — versions 20.2-25.1