Cross site scripting

2022-05-0414:15:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

22.9%

JSON

Cross-site Scripting (XSS) vulnerability in Web GUI of SiteManager allows logged-in user to inject scripting. This issue affects: Secomea SiteManager all versions prior to 9.7.

CPENameOperatorVersion
sitemanager_1129_firmwarelt9.7.622134021
sitemanager_1139_firmwarelt9.7.622134021
sitemanager_1149_firmwarelt9.7.622134021
sitemanager_3329_firmwarelt9.7.622134021
sitemanager_3339_firmwarelt9.7.622134021
sitemanager_3349_firmwarelt9.7.622134021
sitemanager_3529_firmwarelt9.7.622134021
sitemanager_3539_firmwarelt9.7.622134021
sitemanager_3549_firmwarelt9.7.622134021

Name	Operator	Version
sitemanager_1129_firmware	lt	9.7.622134021
sitemanager_1139_firmware	lt	9.7.622134021
sitemanager_1149_firmware	lt	9.7.622134021
sitemanager_3329_firmware	lt	9.7.622134021
sitemanager_3339_firmware	lt	9.7.622134021
sitemanager_3349_firmware	lt	9.7.622134021
sitemanager_3529_firmware	lt	9.7.622134021
sitemanager_3539_firmware	lt	9.7.622134021
sitemanager_3549_firmware	lt	9.7.622134021

References

www.secomea.com/support/cybersecurity-advisory/

0.001 Low

EPSS

Percentile

22.9%

JSON

Related for PRION:CVE-2022-25784