2 matches found
CVE-2022-41312
The CVE-2022-41312 issue affects Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. The web application stores input in the Switch Description field (name switch_description); a specially crafted HTTP request can trigger stored cross-site scripting, resulting in arbitrary JavaScript execution i...
Moxa SDS-3008 Series Industrial Ethernet Switch web application stored cross-site scripting vulnerability
Talos Vulnerability Report TALOS-2022-1619 Moxa SDS-3008 Series Industrial Ethernet Switch web application stored cross-site scripting vulnerability February 2, 2023 CVE Number CVE-2022-41313,CVE-2022-41311,CVE-2022-41312 SUMMARY A stored cross-site scripting vulnerability exists in the web...