2 matches found
CVE-2024-6558 HMS Industrial Networks Anybus-CompactCom 30 Cross-site Scripting
HMS Industrial Networks Anybus-CompactCom 30 products are vulnerable to a XSS attack caused by the lack of input sanitation checks. As a consequence, it is possible to insert HTML code into input fields and store the HTML code. The stored HTML code will be embedded in the page and executed by hos...
CVE-2024-6558
CVE-2024-6558 covers a cross-site scripting (XSS) vulnerability in HMS Industrial Networks’ Anybus-CompactCom 30 products with web server functionality. The root cause is improper input sanitization, allowing attacker-supplied HTML/JavaScript to be stored and later rendered in the host browser. A...