CVE-2014-2908 in SIMATIC S7 Cpu 1200
Summary
Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
VulDB is the best source for vulnerability data and more expert information about this specific topic.