Vulnerabilities > Advantech > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-08 | CVE-2023-4202 | Cross-site Scripting vulnerability in Advantech products Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the device name field of the web-interface. | 5.4 |
| 2023-08-08 | CVE-2023-4203 | Cross-site Scripting vulnerability in Advantech products Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the ping tool of the web-interface. | 5.4 |
| 2022-10-27 | CVE-2022-3387 | Path Traversal vulnerability in Advantech R-Seenet Advantech R-SeeNet Versions 2.4.19 and prior are vulnerable to path traversal attacks. | 5.3 |
| 2021-12-22 | CVE-2021-21915 | SQL Injection vulnerability in Advantech R-Seenet 2.4.15 An exploitable SQL injection vulnerability exist in the ‘group_list’ page of the Advantech R-SeeNet 2.4.15 (30.07.2021). | 6.5 |
| 2021-12-22 | CVE-2021-21916 | SQL Injection vulnerability in Advantech R-Seenet 2.4.15 An exploitable SQL injection vulnerability exist in the ‘group_list’ page of the Advantech R-SeeNet 2.4.15 (30.07.2021). | 6.5 |
| 2021-12-22 | CVE-2021-21917 | SQL Injection vulnerability in Advantech R-Seenet 2.4.15 An exploitable SQL injection vulnerability exist in the ‘group_list’ page of the Advantech R-SeeNet 2.4.15 (30.07.2021). | 6.5 |
| 2021-12-22 | CVE-2021-21918 | SQL Injection vulnerability in Advantech R-Seenet 2.4.15 A specially-crafted HTTP request can lead to SQL injection. | 4.0 |
| 2021-12-22 | CVE-2021-21919 | SQL Injection vulnerability in Advantech R-Seenet 2.4.15 A specially-crafted HTTP request can lead to SQL injection. | 4.0 |
| 2021-12-22 | CVE-2021-21920 | SQL Injection vulnerability in Advantech R-Seenet 2.4.15 A specially-crafted HTTP request can lead to SQL injection. | 4.0 |
| 2021-12-22 | CVE-2021-21921 | SQL Injection vulnerability in Advantech R-Seenet 2.4.15 A specially-crafted HTTP request can lead to SQL injection. | 4.0 |