AI Score
Confidence
High
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
Cross Site Scripting vulnerability in timetec AWDMS v.2.0 allows an attacker to obtain sensitive information via a crafted payload to the remark parameter of the New Zone function.
github.com/fengniange/TimeTec_Cloud_AWDMS/