Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Softing AG OPC Toolbox through 4.10.1.13035 allows /en/diag_values.html Stored XSS via the ITEMLISTVALUES##ITEMID parameter, resulting in JavaScript payload injection into the trace file. This payload will then be triggered every time an authenticated user browses the page containing it.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Softing AG OPC Toolbox 跨站脚本漏洞
Vulnerability Description
Softing AG OPC Toolbox是德国Softing公司的一个应用软件。OPC工具箱是一系列高端工具箱,用于快速轻松地开发适用于Windows,Windows CE,Linux和更多平台的OPC客户端和服务器。 Softing AG OPC Toolbox through 4.10.1.13035 存在跨站脚本漏洞,该漏洞允许通过/en/diag_values.html进行XSS。
CVSS Information
N/A
Vulnerability Type
N/A