A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow Cross-Site Scripting (XSS) attacks if an attacker is able to modify content of particular web pages, causing the application to behave in unexpected ways for legitimate users.
[
{
"product": "XHQ",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All Versions < 6.1"
}
]
}
]