An XSS vulnerability has been discovered in ICS Business Manager affecting version 7.06.0028.7066. A remote attacker could send a specially crafted string exploiting the obdd_act parameter, allowing the malicious user to steal an authenticated user's session, and perform actions within the application.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
icssolution ics business manager 7.06.0028.7089 |
||
icssolution ics business manager 7.06.0028.2802 |
||
icssolution ics business manager 7.06.0028.7066 |