CVE-2012-1807

Koyo H0-ecom - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in the web server in the ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM, H2-ECOM-F, H2-ECOM100, H4-ECOM, H4-ECOM-F, and H4-ECOM100 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (1)

[US Government Resource] http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-02.pdf

Scores

EPSS 0.0034

EPSS Percentile 56.3%

Classification

CWE

CWE-79

Status published

Affected Products (9)

koyo/h0-ecom

koyo/h0-ecom100

koyo/h2-ecom

koyo/h2-ecom-f

koyo/h2-ecom100

koyo/h4-ecom

koyo/h4-ecom-f

koyo/h4-ecom100

n/a/n/a

Timeline

Published Apr 13, 2012

Tracked Since Feb 18, 2026