Vulnerabilities > Spidercontrol > Scada Webserver

DATE CVE VULNERABILITY TITLE RISK
2018-12-04 CVE-2018-18991 Cross-site Scripting vulnerability in Spidercontrol Scada Webserver 2.02.0007
Reflected cross-site scripting (non-persistent) in SCADA WebServer (Versions prior to 2.03.0001) could allow an attacker to send a crafted URL that contains JavaScript, which can be reflected off the web application to the victim's browser.
network
low complexity
spidercontrol CWE-79
6.1
6.1
2017-10-05 CVE-2017-12728 Improper Privilege Management vulnerability in Spidercontrol Scada Webserver 2.02.0007
An Improper Privilege Management issue was discovered in SpiderControl SCADA Web Server Version 2.02.0007 and prior.
local
low complexity
spidercontrol CWE-269
7.8
7.8