2 matches found
Traccar Server Cross-Site Scripting Vulnerability
Traccar Server is an open source GPS tracking system. A cross-site scripting vulnerability exists in the protocol/SpotProtocolDecoder.java file in Traccar Server version 4.2, which can be exploited by a remote attacker to inject arbitrary Web script or HTML...
CVE-2019-5748
In Traccar Server version 4.2, protocol/SpotProtocolDecoder.java might allow XXE attacks...