Vulnerabilities (CVE)

Filtered by vendor Salicru Subscribe
Filtered by product Slc-20-cube3\(5\)
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-10887 1 Salicru 1 Slc-20-cube3\(5\) 2024-02-28 4.3 MEDIUM 6.1 MEDIUM
A reflected HTML injection vulnerability on Salicru SLC-20-cube3(5) devices running firmware version cs121-SNMP v4.54.82.130611 allows remote attackers to inject arbitrary HTML elements via a /DataLog.csv?log= or /AlarmLog.csv?log= or /waitlog.cgi?name= or /chart.shtml?data= or /createlog.cgi?name= request.