CVE-2019-25270

SOCA Access Control System 180612 contains a cross-site scripting vulnerability in the 'senddata' POST parameter of loggedpage.php that allows attackers to inject malicious scripts. Attackers can exploit this weakness by sending crafted POST requests to execute arbitrary HTML and script code in a...

SOCA Access Control System 跨站脚本漏洞

SOCA Access Control System is an access control system from SOCA. A cross-site scripting vulnerability exists in SOCA Access Control System version 180612, which stems from improper cleanup of the senddata parameter in the loggedpage.php file, which could lead to a cross-site scripting attack...

CVE-2019-25270

SOCA Access Control System 180612 is affected by a reflected XSS in the senddata POST parameter of logged_page.php (also referred to as logged page.php in PT-2026-1674). The root cause is improper handling/encoding of user-supplied data, allowing attackers to inject and execute arbitrary HTML/scr...

CVE-2019-25270 SOCA Access Control System 180612 Reflected Cross-Site Scripting via logged_page.php

SOCA Access Control System 180612 contains a cross-site scripting vulnerability in the 'senddata' POST parameter of loggedpage.php that allows attackers to inject malicious scripts. Attackers can exploit this weakness by sending crafted POST requests to execute arbitrary HTML and script code in a...

PT-2026-1674

Name of the Vulnerable Software and Affected Versions SOCA Access Control System version 180612 Description The SOCA Access Control System contains a cross-site scripting issue in the senddata POST parameter of the 'logged page.php' file. This allows attackers to inject malicious scripts by sendi...