Limited Black Friday Offer:

Advantech R-SeeNet is2sim param Reflected XSS CVE-2021-21803 Scanner

Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload.

Short Info

Level

Medium

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Url

Parent Category

Advantech R-SeeNet is2sim param Reflected XSS CVE-2021-21803 Scanner Detail

This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. A specially crafted URL by an attacker and visited by a victim can lead to arbitrary JavaScript code execution.

https://talosintelligence.com/vulnerability_reports/TALOS-2021-1272