CVE-2013-2299 Information

Description

Cross-site scripting (XSS) vulnerability in Advantech WebAccess (formerly BroadWin WebAccess) before 7.1 2013.05.30 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://ics-cert.us-cert.gov/advisories/ICSA-13-225-01