A CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-siteScripting') vulnerability exists that could cause code and session manipulation when maliciouscode is inserted into the browser. Affected Products: NetBotz 4 - 355/450/455/550/570 (V4.7.0 and prior)
7.6CVSS
6.4AI Score
0.001EPSS
A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists thatcould cause account takeover when a brute force attack is performed on the account. Affected Products: NetBotz 4 - 355/450/455/550/570 (V4.7.0 and prior)
7.5CVSS
7.5AI Score
0.001EPSS
A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists thatcould cause the user to be tricked into performing unintended actions when external addressframes are not properly restricted. Affected Products: NetBotz 4 - 355/450/455/550/570 (V4.7.0 and prior)
6.5CVSS
6.4AI Score
0.001EPSS