Spectrum Power provides essential components for SCADA, communications and data modeling for control and monitoring systems. Siemens Spectrum Power 4 is vulnerable to a cross-site scripting vulnerability that could be exploited by an attacker if an unsuspecting user is tricked into visiting a malicious link.