CVE List


Critical 9.6

Stored XSS (Cross-Site Scripting) exists in the SolarWinds Orion Platform before before 2020.2.1 on multiple forms and pages. This vulnerability may lead to the Information Disclosure and Escalation of Privileges (takeover of administrator account).

Published September 17, 2020.

Affected software

Solarwinds Orion Platform

Reference links

Sign Up for Alerts