Vulnerabilities > Enphase > Envoy > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-02-09 CVE-2019-7677 Cross-site Scripting vulnerability in Enphase Envoy
XSS exists in Enphase Envoy R3.*.* via the profileName parameter to the /home URI on TCP port 8888.
network
low complexity
enphase CWE-79
6.1
6.1