Columbia Weather MicroServer Firmware Version MS_2.6.9900 - Reflected XSS Vulnerability in networkdiags.php

Columbia Weather MicroServer Firmware Version MS_2.6.9900 - Reflected XSS Vulnerability in networkdiags.php

CVE-2018-18880 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

In firmware version MS_2.6.9900 of Columbia Weather MicroServer, a networkdiags.php reflected Cross-site scripting (XSS) vulnerability allows remote authenticated users to inject arbitrary web script.

Learn more about our Web App Pen Testing.