CVE-2021-22722 – A CWE-79: Improper Neutralization of Input During Web Page Generation (‘Stored Cross-site …

21 July 2021

Vuln ID: CVE-2021-22722

Published: 2021-07-21 15:15:14Z

Description: A CWE-79: Improper Neutralization of Input During Web Page Generation (‘Stored Cross-site Scripting’) vulnerability exists in EVlink City (EVC1S22P4 / EVC1S7P4 all versions prior to R8 V3.4.0.1), EVlink Parking (EVW2 / EVF2 / EV.2 all versions prior to R8 V3.4.0.1), and EVlink Smart Wallbox (EVB1A all versions prior to R8 V3.4.0.1 ) that could cause code injection when importing a CSV file or changing station parameters.

Source: NVD.NIST.GOV

Date:

21 July 2021

Categorie(s):

NVD

Tag(s):

NVD

Shouldn’t Teams, Zoom, Slack all interoperate securely for the Feds? Wyden is asking24 April 2024
The evolution from BEC to BCC24 April 2024
US indicts botnet operator24 April 2024
Dark web inundated by cheap ransomware tools24 April 2024
Ukrainian documents laced with old malware exposed24 April 2024