CVE-2021-23228

Publication date

2021-12-22 18:06:52

Family

icscert

State

PUBLISHED

Description

DIAEnergie Version 1.7.5 and prior is vulnerable to a reflected cross-site scripting attack through error pages that are returned by “.NET Request.QueryString”.