Moxa IKS and EDS fails to properly validate user input, giving unauthenticated and authenticated attackers the ability to perform XSS attacks, which may be used to send a malicious script.
https://ics-cert.us-cert.gov/advisories/ICSA-19-057-01
https://ics-cert.us-cert.gov/advisories/ICSA-19-057-01