SYNC-2024-020601 - Reflected Cross-Site Scripting (XSS)
Severity: High2024-03-28
Abstract
Oxygen XML Web Author v26.0.0 and older and Oxygen Content Fusion v6.1 and older are vulnerable to Reflected Cross-Site Scripting (XSS) for malicious URLs.
Affected Products/Versions
Product | Severity | Fixed Release Availability |
Oxygen XML Web Author v26.0.0 and older | High | Oxygen XML Web Author 26.0.0.1 build 2024022608 |
Oxygen Content Fusion v6.1 and older | High | Oxygen Content Fusion 6.1 build 2024031214 |