4 matches found
CVE-2021-29661
Softing AG OPC Toolbox through 4.10.1.13035 allows /en/diagvalues.html Stored XSS via the ITEMLISTVALUESITEMID parameter, resulting in JavaScript payload injection into the trace file. This payload will then be triggered every time an authenticated user browses the page containing it...
CVE-2021-29660
A Cross-Site Request Forgery CSRF vulnerability in en/cfgsetpwd.html in Softing AG OPC Toolbox through 4.10.1.13035 allows attackers to reset the administrative password by inducing the Administrator user to browse a URL controlled by an attacker...
Softing AG OPC Toolbox 跨站请求伪造漏洞
Softing AG OPC Toolbox is an application from Softing Germany.OPC Toolbox is a series of high-end toolboxes for quick and easy development of OPC clients and servers for Windows, Windows CE, Linux and more. Softing AG OPC Toolbox through 4.10.1.13035 A cross-site request forgery vulnerability can...
Softing AG OPC Toolbox 跨站脚本漏洞
Softing AG OPC Toolbox is an application from Softing, Germany.OPC Toolbox is a series of high-end toolboxes for quick and easy development of OPC clients and servers for Windows, Windows CE, Linux and many more platforms. Softing AG OPC Toolbox through 4.10.1.13035 A cross-site scripting...