Headline
CVE-2021-42751: GitHub - thingsboard/thingsboard: Open-source IoT Platform - Device management, data collection, processing and visualization.
A cross-site scripting (XSS) vulnerability in Rule Engine in ThingsBoard 3.3.1 allows remote attackers (with administrative access) to inject arbitrary JavaScript within the description of a rule node.
master
Switch branches/tags
21 branches 49 tags
Code
Clone
Use Git or checkout with SVN using the web URL.
Open with GitHub Desktop
Download ZIP
Latest commit
ashvayka Merge pull request #7044 from volodymyr-babak/bug/edge-firmware-id-mi…
d24e399
Aug 12, 2022
Merge pull request #7044 from volodymyr-babak/bug/edge-firmware-id-mi…
…ssing
[3.4.1] Firmware ID not synced from cloud to edge in device / device profiles
d24e399
Git stats
- 11,037 commits
Files
Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
.github/ISSUE_TEMPLATE
Update issue templates
May 26, 2020
application
Merge pull request #7044 from volodymyr-babak/bug/edge-firmware-id-mi…
Aug 12, 2022
common
Merge pull request #7044 from volodymyr-babak/bug/edge-firmware-id-mi…
Aug 12, 2022
dao
Device State performance improvements
Aug 4, 2022
docker
Device State performance improvements
Aug 4, 2022
img
Fix typo in docker README’s.
Oct 25, 2018
msa
Reduce chunk size to support AWS SQS automatically
Aug 2, 2022
netty-mqtt
netty tests - added custom mqtt server and test with keepalive logic
Aug 1, 2022
packaging
Update license year to 2022
Jan 17, 2022
rest-client
Initial DB structure
Jul 22, 2022
rule-engine
remove jetbrains annotations
Aug 2, 2022
tools
Version set to 3.4.1-SNAPSHOT
Jul 19, 2022
transport
Device State performance improvements
Aug 4, 2022
ui-ngx
Merge pull request #6953 from volodymyr-babak/bug/rulechain-fix-assign
Aug 12, 2022
.gitignore
Californium3.properties file to .gitignore
Jan 25, 2022
LICENSE
Initial commit
Dec 1, 2016
README.md
Update README.md - change use cases order
Feb 8, 2022
license-header-template.txt
Update license year to 2022
Jan 17, 2022
lombok.config
Fix lombok config. Update base openjdk image
Feb 5, 2021
pom.xml
Version set to 3.4.1-SNAPSHOT
Jul 19, 2022
pull_request_template.md
Fix typos in PR template
Feb 2, 2022
ThingsBoard Documentation IoT use cases Getting Started Support Licenses
README.md
ThingsBoard
ThingsBoard is an open-source IoT platform for data collection, processing, visualization, and device management.
Documentation
ThingsBoard documentation is hosted on thingsboard.io.
IoT use cases
Smart energy
Fleet tracking
Smart farming
IoT Rule Engine
Smart metering
Getting Started
Collect and Visualize your IoT data in minutes by following this guide.
Support
- Community chat
- Q&A forum
- Stackoverflow
Licenses
This project is released under Apache 2.0 License.
Related news
Thingsboard version 3.3.1 suffers from multiple persistent cross site scripting vulnerabilities.