CVE-2015-1179
Multiple cross-site scripting (XSS) vulnerabilities in data_point_details.shtm in Mango Automation 2.4.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) dpid, (2) dpxid, or (3) pid parameter.
Cross-site Scripting
Vendor | Product | Version |
---|---|---|
infinite_automation_systems | mango_automation | 𝑥 ≤ 2.4.0 |
Common Weakness Enumeration