3 matches found
CVE-2021-38407
creationtimestamp| type| source ---|---|--- 2021-11-03 23:23:32+00:00| seen| https://t.me/cibsecurity/31780...
CVE-2021-38407
Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to cross-site scripting because an authenticated attacker can inject arbitrary JavaScript code into the parameter name of the API devices, which may allow an attacker to remotely execute code...
CVE-2021-38407
CVE-2021-38407 affects Delta Electronics DIALink (versions 1.2.4.0 and earlier). The vulnerability is a cross-site scripting flaw in the API devices name parameter that can be exploited by an authenticated attacker to inject arbitrary JavaScript, with potential to remotely execute code. Public ex...