Diaenergie Security Vulnerabilities and Issues — Diaenergie CVE List

Lucene search

DeltawwDiaenergie

2 matches found

CVE•added 2022/06/27 9:15 p.m.•52 views

CVE-2022-33005

A cross-site scripting (XSS) vulnerability in the System Settings/IOT Settings module of Delta Electronics DIAEnergie v1.08.00 allows attackers to execute arbitrary web scripts via a crafted payload injected into the Name text field.

6.1CVSS5.8AI score0.00228EPSS

CVE•added 2021/12/22 7:15 p.m.•34 views

CVE-2021-31558

DIAEnergie Version 1.7.5 and prior is vulnerable to stored cross-site scripting when an unauthenticated user injects arbitrary code into the parameter “descr” of the script “DIAE_hierarchyHandler.ashx”.

6.5CVSS6.6AI score0.00883EPSS