Security Advisory

CVE-2018-18875

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-06-18 14:29:39

Last updated 2024-08-05 11:23:08

Assigner mitre

State PUBLISHED

Description

In firmware version MS_2.6.9900 of Columbia Weather MicroServer, a stored Cross-site scripting (XSS) vulnerability allows remote authenticated users to inject arbitrary web script via changestationname.php.

← Browse all CVEs View on cve.org ↗