2 matches found
CVE-2018-25090 Wago: Improper Neutralization of Input During Web Page Generation in multiple devices
An unauthenticated remote attacker can use an XSS attack due to improper neutralization of input during web page generation. User interaction is required. This leads to a limited impact of confidentiality and integrity but no impact of availability...
CVE-2018-25090
CVE-2018-25090 maps to WAGO devices with a cross-site scripting flaw caused by improper neutralization of input during web page generation. An unauthenticated remote attacker can exploit this via network access; user interaction is required and the impact is limited to confidentiality and integri...