Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2019-19003

Disclosure Date: April 02, 2020 (last updated February 21, 2025)
For ABB eSOMS versions 4.0 to 6.0.2, the HTTPOnly flag is not set. This can allow Javascript to access the cookie contents, which in turn might enable Cross Site Scripting.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0