CVE-2018-10692

An issue was discovered on Moxa AWK-3121 1.14 devices. The session cookie "Password508" does not have an HttpOnly flag. This allows an attacker who is able to execute a cross-site scripting attack to steal the cookie very easily.
Configurations

Configuration 1


Information

Published : 2019-06-07 08:29

Updated : 2019-06-10 11:29


NVD link : CVE-2018-10692

Mitre link : CVE-2018-10692

Products Affected
No products.
CWE