4 matches found
CVE-2023-28648
Osprey Pump Controller version 1.01 inputs passed to a GET parameter are not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML/JS code in a user's browser session in context of an affected site...
CVE-2023-28648
Osprey Pump Controller version 1.01 inputs passed to a GET parameter are not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML/JS code in a user's browser session in context of an affected site...
CVE-2023-28648 CVE-2023-28648
Osprey Pump Controller version 1.01 inputs passed to a GET parameter are not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML/JS code in a user's browser session in context of an affected site...
CVE-2023-28648
CVE-2023-28648 affects the Osprey Pump Controller (version 1.01). The vulnerability arises from inputs passed to a GET parameter not being properly sanitized, allowing an attacker to execute arbitrary HTML/JS in a user’s browser session within the context of the affected site (cross-site scriptin...