CNNVD-202512-5049 Information

CNNVD ID

CNNVD-202512-5049

Related CVE

CVE-2022-50802

• CNNVD Published: 2025-12-30

Description (Chinese)

ETAP Safety Manager是美国ETAP公司的一款应急照明中央监控与管理系统。 ETAP Safety Manager 1.0.0.32版本存在跨站脚本漏洞，该漏洞源于action GET参数存在跨站脚本漏洞，可能导致恶意HTML和JavaScript注入。

Description (English)

ETAP Safety Manager is a Central Monitoring and Management System for Emergency Lighting of American EMAP. ETAP Safety Manager 1.0.0.32 has a cross-site script loophole, which stems from the cross-site script gap in the action ET parameters, which could lead to malicious HTML and JavaScript injections.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

ETAP

Published

2025-12-30

Last Modified

2026-02-24

References

https://cxsecurity.com/issue/WLB-2022090031 https://exchange.xforce.ibmcloud.com/vulnerabilities/235743 https://packetstormsecurity.com/files/168339/ https://www.etaplighting.com/ https://www.vulncheck.com/advisories/etap-safety-manager-unauthenticated-reflected-cross-site-scripting-via-action-parameter https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5711.php