N/A

ETAP Lighting International NV ETAP Safety Manager 1.0.0.32 is vulnerable to Cross Site Scripting (XSS). Input passed to the GET parameter 'action' is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML/JS code in a user's browser session in context of an affected site.

N/A

N/A

ETAP Lighting International ETAP Safety Manager 跨站脚本漏洞

ETAP Lighting International ETAP Safety Manager是ETAP Lighting International公司的用于应急照明的中央控制和管理系统。 ETAP Lighting International ETAP Safety Manager 1.0.0.32 版本存在跨站脚本漏洞，该漏洞源于 GET 参数 action 在回显之前没有经过正确转义。

N/A

N/A