CVE-2022-48111: SIRI WI400 – XSS on Login PageAlessandro Albani2023-03-03T09:03:03+01:00
A cross-site scripting (XSS) vulnerability in the check_login function of S.I.R.I. s.r.l WI400 between v.8 and v.11 included allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the “f” parameter.