Vulnerabilities > Computrols > Computrols Building Automation System > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-05-23 CVE-2019-10846 Cross-site Scripting vulnerability in Computrols Building Automation System
Computrols CBAS 18.0.0 allows Unauthenticated Reflected Cross-Site Scripting vulnerabilities in the login page and password reset page via the username GET parameter.
network
low complexity
computrols CWE-79
6.1
6.1