3 matches found
CVE-2018-10700
An issue was discovered on Moxa AWK-3121 1.19 devices. It provides functionality so that an administrator can change the name of the device. However, the same functionality allows an attacker to execute XSS by injecting an XSS payload. The POST parameter "iwboarddeviceName" is susceptible to this...
CVE-2018-10700
CVE-2018-10700 affects Moxa AWK-3121 (version 1.19). The vulnerability arises in the web interface via the POST parameter iw_board_deviceName, allowing an attacker to inject a payload and execute cross-site scripting (XSS). The issue is tied to an input handling flaw in the device name change fun...
CVE-2018-10700
An issue was discovered on Moxa AWK-3121 1.19 devices. It provides functionality so that an administrator can change the name of the device. However, the same functionality allows an attacker to execute XSS by injecting an XSS payload. The POST parameter "iwboarddeviceName" is susceptible to this...