CVSS: 6.5EPSS: 0%CPEs: 18EXPL: 0CVE-2021-32005 – SiteManager Log View XSS Issue
https://notcve.org/view.php?id=CVE-2021-32005
Cross-site Scripting (XSS) vulnerability in log view of Secomea SiteManager allows a logged in user to store javascript for later execution. This issue affects: Secomea SiteManager Version 9.6.621421014 and all prior versions. Una vulnerabilidad de tipo cross-site Scripting (XSS) en la visualización de registro de Secomea SiteManager permite a un usuario que ha iniciado sesión almacenar javascript para su posterior ejecución. Este problema afecta a: Secomea SiteManager versión 9.6.621421014 y todas las versiones anteriores • https://www.secomea.com/support/cybersecurity-advisory/#5017 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 18EXPL: 0CVE-2020-29027 – Reflected Cross Site Scripting
https://notcve.org/view.php?id=CVE-2020-29027
Cross-site Scripting (XSS) vulnerability in GUI of Secomea SiteManager could allow an attacker to cause an XSS Attack. This issue affects: Secomea SiteManager all versions prior to 9.3. Una vulnerabilidad de tipo Cross-site Scripting (XSS) en la GUI de Secomea SiteManager, podría permitir a un atacante causar un ataque de tipo XSS. Este problema afecta: Secomea SiteManager todas las versiones anteriores a 9.3 • https://www.secomea.com/support/cybersecurity-advisory/#3042 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •