CVE-2020-7570
CVE-2020-7570 is a stored Cross-site Scripting (CWE-79) vulnerability in Schneider Electric EcoStruxure Building Operation WebReports (versions 1.9–3.1). An authenticated remote user could inject arbitrary web script or HTML due to improper sanitization of input, enabling stored XSS against other...