3 matches found
TrippLite SU2200RTXL2Ua Improper Neutralization of Input During Web Page Generation (CVE-2020-26801)
A stored cross-site scripting XSS vulnerability was discovered in /Forms/devicevars1 on TrippLite SU2200RTXL2Ua with firmware version 12.04.0055. This vulnerability allows authenticated attackers to obtain other users' information via a crafted POST request. This plugin only works with Tenable.ot...
CVE-2020-26801
This CVE (CVE-2020-26801) affects TrippLite SU2200RTXL2Ua firmware 12.04.0055, with a stored XSS flaw in the /Forms/device_vars_1 endpoint. The vulnerability allows authenticated attackers to exfiltrate information from other users via a crafted POST request. The connected Tenable OT/NASL and PT ...
CVE-2020-26801
A stored cross-site scripting XSS vulnerability was discovered in /Forms/devicevars1 on TrippLite SU2200RTXL2Ua with firmware version 12.04.0055. This vulnerability allows authenticated attackers to obtain other users' information via a crafted POST request...