[SYSS-2018-042] XSS in HMS Netbiter WS100 – CVE-2018-19694

Posted by Micha Borrmann on Jan 13Advisory ID: SYSS-2018-042
Product: Netbiter WS100
Manufacturer: HMS Industrial Networks AB
Affected Version(s): 3.30.5 <= Tested Version(s): 3.30.5 Vulnerability Type: Cross-Site Scripting (CWE-79) Risk Level: Low Solution Status: Fixed Manufacturer Notification: 2018-11-29 Solution Date: 2018-12-20 Public Disclosure: 2019-01-11...

Link: http://seclists.org/bugtraq/2019/Jan/9