{"vulnerability": "CVE-2020-22985", "sightings": [{"uuid": "7fff5ba6-f7c4-439c-b192-f70468d98ded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-22985", "type": "seen", "source": "https://t.me/cibsecurity/42567", "content": "\u203c CVE-2020-22985 \u203c\n\nCross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and earlier, allows remote unauthenticated attackers to execute arbitrary code via the key parameter to the getESRIExtraConfig task.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T00:42:29.000000Z"}]}