Vulnerabilities > Osisoft > PI WEB API > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-11-18 CVE-2021-43549 Cross-site Scripting vulnerability in Osisoft PI web API
A remote authenticated attacker with write access to a PI Server could trick a user into interacting with a PI Web API endpoint and redirect them to a malicious website.
network
low complexity
osisoft CWE-79
4.8
4.8
2019-08-15 CVE-2019-13515 Information Exposure Through Log Files vulnerability in Osisoft PI web API
OSIsoft PI Web API 2018 and prior may allow disclosure of sensitive information.
network
low complexity
osisoft CWE-532
6.5
6.5
2018-03-14 CVE-2018-7508 Cross-site Scripting vulnerability in Osisoft PI Vision and PI web API
A Cross-site Scripting issue was discovered in OSIsoft PI Web API versions 2017 R2 and prior.
network
low complexity
osisoft CWE-79
6.1
6.1