Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
HMS Industrial Networks Anybus-CompactCom 30 Cross-site Scripting
Vulnerability Description
HMS Industrial Networks Anybus-CompactCom 30 products are vulnerable to a XSS attack caused by the lack of input sanitation checks. As a consequence, it is possible to insert HTML code into input fields and store the HTML code. The stored HTML code will be embedded in the page and executed by host browser the next time the page is loaded, enabling social engineering attacks.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
HMS Industrial Networks Anybus-CompactCom 30 跨站脚本漏洞
Vulnerability Description
HMS Industrial Networks Anybus-CompactCom 30是瑞典HMS Industrial Networks公司的一个蓝牙模块。用作蓝牙通信的物理层转换器。 HMS Industrial Networks Anybus-CompactCom 30存在跨站脚本漏洞,该漏洞源于缺乏针对用户输入的检查,导致可以将 HTML 代码插入输入字段并存储。
CVSS Information
N/A
Vulnerability Type
N/A