Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Wiesemann & Theis: Multiple W&T Products are vulnerable to cross-site-scripting
Vulnerability Description
An low privileged remote Attacker can execute arbitrary web scripts or HTML via a crafted payload injected into several fields of the configuration webpage with limited impact.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Wiesemann & Theis Web-IO 跨站脚本漏洞
Vulnerability Description
Wiesemann & Theis Web-IO是Wiesemann & Theis公司的一个用于通过 TCP/IP 以太网实现中小型远程 IO和监控应用程序的组件。 Wiesemann & Theis Web-IO存在跨站脚本漏洞,该漏洞源于配置网页中多个字段可注入特制有效载荷,可能导致执行任意Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A