CVE-2020-6777
Concisely: CVE-2020-6777 is a stored XSS in Bosch PRAESIDEO (≤4.41) and PRAESENSA (≤1.10) web management interfaces. Requires admin authentication; attacker can store script that runs in a victim’s browser when they log in, allowing interaction with the interface under the victim’s privileges. Th...