VYPR

PNPSCADA

by PNPSCADA

CVEs (2)

  • CVE-2020-24841CriFeb 16, 2021
    risk 0.64cvss 9.8epss 0.02

    PNPSCADA 2.200816204020 allows SQL injection via parameter 'interf' in /browse.jsp. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

  • CVE-2020-24842MedFeb 10, 2021
    risk 0.40cvss 6.1epss 0.01

    PNPSCADA 2.200816204020 allows cross-site scripting (XSS), which can execute arbitrary JavaScript in the victim's browser.