A reflected HTML injection vulnerability on Salicru SLC-20-cube3(5) devices running firmware version cs121-SNMP v4.54.82.130611 allows remote attackers to inject arbitrary HTML elements via a /DataLog.csv?log= or /AlarmLog.csv?log= or /waitlog.cgi?name= or /chart.shtml?data= or /createlog.cgi?name= request.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-04-05T17:26:00
Updated: 2024-08-04T22:40:15.428Z
Reserved: 2019-04-05T00:00:00
Link: CVE-2019-10887
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-04-05T18:29:00.227
Modified: 2024-11-21T04:20:03.337
Link: CVE-2019-10887
Redhat
No data.