GL.iNet GL-AR150 2.x before 3.x devices, configured as repeaters, allow cgi-bin/router_cgi?action=scanwifi XSS when an attacker creates an SSID with an XSS payload as the name. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 28035 Self cross-site scripting (XSS) was possible on devices page. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 28035Ĭross-site scripting (XSS) was possible in notification pop-ups. Stored cross-site scripting (XSS) was possible in activity details. Stored cross-site scripting (XSS) was possible in protection plan details. Librenms 21.11.0 is affected by a Cross Site Scripting (XSS) vulnerability in includes/html/common/.
Librenms 21.11.0 is affected by a Cross Site Scripting (XSS) vulnerability in includes/html/forms/.
KNIME Server before 4.13.4 allows XSS via the old WebPortal login page.
0 kommentar(er)
