3 matches found
Scada-LTS Third Party Component
1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: Scada-LTS Equipment: Scada-LTS Vulnerability: Cross-site Scripting 2. RISK EVALUATION Successful exploitation of this vulnerability could allow loss of sensitive...
CVE-2015-1179
Multiple cross-site scripting XSS vulnerabilities in datapointdetails.shtm in Mango Automation 2.4.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 dpid, 2 dpxid, or 3 pid parameter...
CVE-2015-1179
Affected software: Mango Automation (open-source SCADA/HMI) up to version 2.4.0 and possibly earlier. Vulnerability: Cross-site scripting (XSS) in data_point_details.shtm, exploitable via the parameters dpid, dpxid, or pid. Root cause/impact: Improper input handling allows a remote attacker to cr...