2 matches found
CVE-2013-0668
Multiple cross-site scripting XSS vulnerabilities in the HMI web application in Siemens WinCC TIA Portal 11 allow remote attackers to inject arbitrary web script or HTML via a crafted URL...
CVE-2013-0668
CVE-2013-0668 : In Siemens WinCC (TIA Portal) 11, the HMI Web application is vulnerable to cross-site scripting via crafted URLs. The issue is tied to input handling in the Web UI, enabling an authenticated or social-engineered user to trigger script execution in other users’ browsers. Affected p...