CVE-2022-48111: SIRI WI400 – XSS on Login Page

  • Home
  • CVE-2022-48111: SIRI WI400 – XSS on Login Page

A cross-site scripting (XSS) vulnerability in the check_login function of S.I.R.I. s.r.l WI400 between v.8 and v.11 included allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the “f” parameter.