Softing - Opc Toolbox CVE

Filtered by vendor Softing Subscribe

Filtered by product Opc Toolbox

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-29661	1 Softing	1 Opc Toolbox	2021-04-08	3.5 LOW	5.4 MEDIUM
Softing AG OPC Toolbox through 4.10.1.13035 allows /en/diag_values.html Stored XSS via the ITEMLISTVALUES##ITEMID parameter, resulting in JavaScript payload injection into the trace file. This payload will then be triggered every time an authenticated user browses the page containing it.

Vulnerabilities (CVE)