A reflected HTML injection vulnerability on Salicru SLC-20-cube3(5) devices running firmware version cs121-SNMP v4.54.82.130611 allows remote attackers to inject arbitrary HTML elements via a /DataLog.csv?log= or /AlarmLog.csv?log= or /waitlog.cgi?name= or /chart.shtml?data= or /createlog.cgi?name= request.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-04-05T17:26:00

Updated: 2024-08-04T22:40:15.428Z

Reserved: 2019-04-05T00:00:00

Link: CVE-2019-10887

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-04-05T18:29:00.227

Modified: 2024-11-21T04:20:03.337

Link: CVE-2019-10887

cve-icon Redhat

No data.