Vulnerability CVE-2020-28210
Published: 2020-11-19   Modified: 2020-11-20

Description:
A CWE-79 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability exists in EcoStruxure Building Operation WebStation V2.0 - V3.1 that could cause an attacker to inject HTML and JavaScript code into the user's browser.

Type:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://www.se.com/ww/en/download/document/SEVD-2020-315-04/
Copyright 2024, cxsecurity.com

 

Back to Top