Osisoft · Osisoft Pi Web Api · CVE-2020-12021
**Name of the Vulnerable Software and Affected Versions**
OSIsoft PI Web API versions prior to 1.12.0.6346
**Description**
The issue allows for a cross-site scripting attack, which may enable an attacker to remotely execute arbitrary code.
**Recommendations**
For versions prior to 1.12.0.6346, update to a version newer than 1.12.0.6346 to resolve the issue.