1 results (0.012 seconds)
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-40190
https://notcve.org/view.php?id=CVE-2022-40190
31 Oct 2022 — SAUTER Controls moduWeb firmware version 2.7.1 is vulnerable to reflective cross-site scripting (XSS). The web application does not adequately sanitize request strings of malicious JavaScript. An attacker utilizing XSS could then execute malicious code in users’ browsers and steal sensitive information, including user credentials. La versión 2.7.1 del firmware moduWeb de SAUTER Controls es vulnerable a Cross-Site Scripting (XSS) Reflejado. La aplicación web no sanitiza adecuadamente las cadenas de solicitud... • https://www.cisa.gov/uscert/ics/advisories/icsa-22-300-02 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •