CVE-2019-7677

CVE-2019-7677

EPSS 0.9%

XSS exists in Enphase Envoy R3.*.* via the profileName parameter to the /home URI on TCP port 8888.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/pudding2/enphase-energy/blob/master/XSS-exp.txt https://github.com/pudding2/enphase-energy/blob/master/XSS.png