PT-2017-8780 · Visonic · Visonic Powerlink2

Aditya K. Sood

Published

2017-02-13

Updated

2021-09-09

CVE-2016-5811

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Visonic PowerLink2 versions prior to October 2016 firmware release

Description An issue was discovered where user-controlled input is not neutralized prior to being placed in web page output, leading to a CROSS-SITE SCRIPTING issue.

Recommendations For versions prior to the October 2016 firmware release, update to the October 2016 firmware release or later to resolve the issue.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2016-5811

Affected Products

Visonic Powerlink2

PT-2017-8780 · Visonic · Visonic Powerlink2

CVE-2016-5811

Weakness Enumeration

Related Identifiers

Affected Products

References · 3