Siemens APE1808 Improper Neutralization of Script in Attributes in a Web Page (CVE-2025-4615)

An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass system restrictions and execute arbitrary commands. This plugin only works with Tenable.ot. Please visit...

PT-2025-5198 · Unknown · Ella Van Durpe Slides & Presentations

Name of the Vulnerable Software and Affected Versions: Ella van Durpe Slides & Presentations versions 0.0.0 through 0.0.39 Description: The issue is related to the improper neutralization of script-related HTML tags in a web page, which allows for code injection. This is a basic Cross-Site...