1 results (0.002 seconds)

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

A CWE-79 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability exists in EcoStruxure Building Operation WebStation V2.0 - V3.1 that could cause an attacker to inject HTML and JavaScript code into the user's browser. Se presenta una vulnerabilidad de Neutralización Inapropiada de la Entrada Durante la Generación de Páginas Web CWE-79 (Cross-site Scripting) en EcoStruxure Building Operation WebStation versiones V2.0 - V3.1, que podría hacer que un atacante inyecte código HTML y JavaScript en el navegador del usuario • https://www.se.com/ww/en/download/document/SEVD-2020-315-04 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •