A CWE-79 Cross-Site Scripting vulnerability exists in all versions of the TSXETG100 allowing an attacker to send a specially crafted URL with an embedded script to a user that would then be executed within the context of that user.Referenceshttps://www.schneider-electric.com/en/download/document/SEVD-2019-134-07/
