Cross-Site Scripting Vulnerability in ScadaBR by ScadaBR Team

CVE-2019-16344

What is CVE-2019-16344?

A cross-site scripting (XSS) vulnerability in the login form of ScadaBR 1.0CE enables remote attackers to inject arbitrary web scripts or HTML code through the username or password fields, potentially compromising user accounts and confidentiality. Proper input validation is necessary to mitigate this threat.

References