Insufficient output sanitization in Teltonika firmware TRB2_R_00.02.02 allows a remote, authenticated malicious user to conduct persistent cross-site scripting (XSS) attacks by injecting malicious client-side code into the 'URL/ Host / Connection' form in the 'DATA TO SERVER' configuration section.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
teltonika-networks gateway_trb245_firmware trb2_r_00.02.02 |