A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP request to trigger this vulnerability.Form field id="webLocationMessage_text" name="webLocationMessage_text"
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NMoxa Sds 3008
HWMoxawszystkie wersjeMoxa Sds 3008 Firmware
OSMoxa≤ 2.1Moxa Sds 3008 T
HWMoxawszystkie wersjeMoxa Sds 3008 T Firmware
OSMoxa≤ 2.1
Related vulnerabilities
A denial of service vulnerability exists in the web server functionality of Moxa SDS-3008 Series Industrial Et...
A cleartext transmission vulnerability exists in the web application functionality of Moxa SDS-3008 Series Ind...
An information disclosure vulnerability exists in the web application functionality of Moxa SDS-3008 Series In...
A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Serie...
A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Serie...