2 matches found
DIAEnergie Cross-Site Scripting (CVE-2021-44544)
A stored cross-site scripting vulnerability exists in Delta Industrial Automation DIAEnergie. The vulnerability is due to input validation error when processing parameters in HandlerEnergyType.ashx endpoint...
CVE-2021-44544
DIAEnergie (Delta Electronics) Vulnerability CVE-2021-44544 is a cross-site scripting issue affecting DIAEnergie versions prior to 1.9, exploitable via the parameter name in HandlerEnergyType.ashx. Public sources describe both stored/reflected XSS patterns in this component and the ICS advisory n...