Filtered by vendor Scadabr Subscriptions
Filtered by product Scadabr Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2019-16344 1 Scadabr 1 Scadabr 2024-11-21 6.1 Medium
A cross-site scripting (XSS) vulnerability in the login form (/ScadaBR/login.htm) in ScadaBR 1.0CE allows a remote attacker to inject arbitrary web script or HTML via the username or password parameter.
CVE-2019-16321 1 Scadabr 1 Scadabr 2024-11-21 6.1 Medium
ScadaBR 1.0CE, and 1.1.x through 1.1.0-RC, has XSS via a request for a nonexistent resource, as demonstrated by the dwr/test/ PATH_INFO.