Back to search
CVE-2017-14850
Published: Jun 3, 2019
Modified: Jun 2, 2026
PUBLISHED
Description
All known versions of the Orpak SiteOmat web management console is vulnerable to multiple instances of Stored Cross-site Scripting due to improper external user-input validation. An attacker with access to the web interface is able to hijack sessions or navigate victims outside of SiteOmat, to a malicious server owned by him.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://www.orpak.com
x_refsource_MISC
https://ics-cert.us-cert.gov/advisories/ICSA-19-122-01
x_refsource_MISC
108167
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now