Web Application Firewall

Siemens Spectrum Power found to have Cross Site Scripting Vulnerability

Siemens Spectrum Power was found to be prone to cross site scripting vulnerability . This was caused because the user supplied inputs were not properly sanitised. Attackers can easily exploit this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. They can also steam cookie -based authentication credentials . This could also be used to launch other attacks.

CVE-2019-10933

Affected versions :-

Siemens Spectrum Power 7 2.20
Siemens Spectrum Power 5 5.50
Siemens Spectrum Power 4 4.75
Siemens Spectrum Power 3 3.11

Sign up for our Newsletter

Click edit button to change this text. Lorem ipsum dolor sit amet, consectetur adipiscing elit

Siemens Spectrum Power found to have Cross Site Scripting Vulnerability

Recent Posts

Container Runtime Protection

Threats to Containers

The Need for Container Security

Follow Us

zzcms 2018 template_user.php ml/title code injection

ZyXEL VPN2S 1.12 Web Server path traversal

Zyxel VPN2S 1.12 CGI Program os command injection

Zyxel USG/USG Flex/Zywall/ATP/VPN up to 4.64 Web-based Management Interface improper authentication

ZyXEL GS1900-8 2.60 LLDP Packet cross site scripting

Zynamics BinDiff up to 6 i64 File use after free

Web Application Firewall Solution

Sign up for our Newsletter