10 matches found
Impinj Speedway Connect R420 RFID Reader Cross-Site Scripting Vulnerability
Impinj Speedway Connect R420 RFID Reader is an identifier used to identify and track objects from Impinj USA. A cross-site scripting vulnerability exists in the 'license key' parameter of the web application in Impinj Speedway Connect R420 RFID Reader versions prior to 2.2.2. A remote attacker...
Input validation
An issue was discovered on the Impinj Speedway Connect R420 RFID Reader before 2.2.2. The affected web interface is vulnerable to ClickJacking or UI Redressing: it is possible to access the web application in an iframe, and clicking on the iframe will redirect to a third-party application or...
CVE-2018-5304
An issue was discovered on the Impinj Speedway Connect R420 RFID Reader before 2.2.2. The affected web interface is vulnerable to ClickJacking or UI Redressing: it is possible to access the web application in an iframe, and clicking on the iframe will redirect to a third-party application or...
CVE-2018-5304
An issue was discovered on the Impinj Speedway Connect R420 RFID Reader before 2.2.2. The affected web interface is vulnerable to ClickJacking or UI Redressing: it is possible to access the web application in an iframe, and clicking on the iframe will redirect to a third-party application or...
CVE-2018-5303
An issue was discovered on the Impinj Speedway Connect R420 RFID Reader before 2.2.2. The license key parameter of the web application is vulnerable to Cross Site Scripting; this vulnerability allows an attacker to send malicious code to another user...
Cross site scripting
An issue was discovered on the Impinj Speedway Connect R420 RFID Reader before 2.2.2. The license key parameter of the web application is vulnerable to Cross Site Scripting; this vulnerability allows an attacker to send malicious code to another user...
CVE-2018-5303
An issue was discovered on the Impinj Speedway Connect R420 RFID Reader before 2.2.2. The license key parameter of the web application is vulnerable to Cross Site Scripting; this vulnerability allows an attacker to send malicious code to another user...
CVE-2018-5303
Impinj Speedway Connect R420 RFID Reader before version 2.2.2 has a Cross-Site Scripting vulnerability in the web application’s license key parameter, allowing an attacker to deliver malicious code to another user. The associated CNVD entry confirms the issue and notes affected versions are prior...
CVE-2018-5304
An issue was discovered on the Impinj Speedway Connect R420 RFID Reader before 2.2.2. The affected web interface is vulnerable to ClickJacking or UI Redressing: it is possible to access the web application in an iframe, and clicking on the iframe will redirect to a third-party application or...
CVE-2018-5304
The Impinj Speedway Connect R420 RFID Reader web interface is affected by a ClickJacking/UI redress issue in versions prior to 2.2.2. An attacker could load the web interface in an iframe and, by user interaction, trigger redirection to a third-party application or other malicious actions. The ex...