Limited Black Friday Offer:

Advantech R-SeeNet graph param Reflected XSS CVE-2021-21801 Scanner

Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload.

Short Info

Level

Medium

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Url

Parent Category

Advantech R-SeeNet graph param Reflected XSS CVE-2021-21801 Scanner Detail

This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. A specially crafted URL by an attacker and visited by a victim can lead to arbitrary JavaScript code execution.

https://talosintelligence.com/vulnerability_reports/TALOS-2021-1272