Vulnerability CVE-2020-26701
Published: 2020-11-17

Description:
Cross-site scripting (XSS) vulnerability in Dashboards section in Kaa IoT Platform v1.2.0 allows remote attackers to inject malicious web scripts or HTML Injection payloads via the Description parameter.

See advisories in our WLB2 database:
Topic
Author
Date
Low
Kaa IoT Platform 1.2.0 Cross Site Scripting
Mufaddal Masalaw...
16.11.2020

Type:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
http://packetstormsecurity.com/files/160082/Kaa-IoT-Platform-1.2.0-Cross-Site-Scripting.html
Copyright 2024, cxsecurity.com

 

Back to Top