Prajitesh Singh

**Name of the Vulnerable Software and Affected Versions** Nedap Librix Ecoreader (affected versions not specified) **Description** The issue is related to missing authentication for critical functions in the software, which could allow an unauthenticated attacker to potentially execute malicious code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ControlByWeb Relay products (affected versions not specified) **Description** The issue concerns a stored cross-site scripting vulnerability, which could allow an attacker to inject arbitrary scripts into the endpoint of a web interface, potentially running malicious javascript code during a user's session. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.