CVE-2018-12353by Jeremyin Security Bulletinson Posted on June 14, 2018 Knowage (formerly SpagoBI) 6.1.1 allows XSS via the name field to the “Business Model’s Catalogue” catalogue.