3 matches found
EUVD-2025-201436
Advantech WISE-DeviceOn Server versions prior to 5.4 contain a stored cross-site scripting XSS vulnerability in the /rmm/v1/devicemap/building endpoint. When an authenticated user creates a map entry, the name parameter is stored and later rendered in the map list UI without HTML sanitzation. An...
EUVD-2024-15969
Malicious code in bioql PyPI...
Cross site scripting
Dell Unity, versions prior to 5.4, contains a cross-site scripting XSS vulnerability. An authenticated attacker could potentially exploit this vulnerability, leading users to download and execute malicious software crafted by this product's feature to compromise their systems...