3 matches found
Moxa Industrial Managed Switch Cross-site Scripting (CVE-2015-6466)
Cross-site scripting XSS vulnerability in the Diagnosis Ping feature in the administrative web interface on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote attackers to inject arbitrary web script or HTML via an unspecified field. This plugin only works with Tenable.ot...
Moxa EDS-405A/408A < 3.6 Multiple Vulnerabilities
Moxa EDS-405A and EDS-408A devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPEPREFIX =...
CVE-2015-6466
CVE-2015-6466 is an XSS vulnerability in the Diagnosis Ping feature of the administrative web interface on Moxa EDS-405A/EDS-408A switches, exploitable via an unspecified field in firmware prior to 3.6. Affected devices run Moxa’s EDS-405A/EDS-408A series; CVSSv2 base score 4.3 (AV:N/AC:M/Au:N/C:...