VYPR

MQTTRoute

by MQTTRoute

CVEs (2)

  • CVE-2022-35612MedOct 13, 2022
    risk 0.35cvss 5.4epss 0.00

    A cross-site scripting (XSS) vulnerability in MQTTRoute v3.3 and below allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the dashboard name text field.

  • CVE-2022-35611MedOct 13, 2022
    risk 0.28cvss 4.3epss 0.00

    A Cross-Site Request Forgery (CSRF) in MQTTRoute v3.3 and below allows attackers to create and remove dashboards.