Cross-Site Scripting Vulnerability in Schneider Electric U.motion Builder Software
CVE-2018-7786
6.1MEDIUM
What is CVE-2018-7786?
In Schneider Electric U.motion Builder software prior to version 1.3.4, a cross-site scripting (XSS) vulnerability was identified that allows attackers to inject malicious scripts into web pages. This exploitation could lead to unauthorized access, data manipulation, or other nefarious activities, compromising the integrity and security of the affected applications.
Affected Version(s)
U.motion Builder U.motion Builder, all versions prior to 1.3.4