Vulnerability Description
ServersCheck Monitoring Software through 14.3.3 has Persistent and Reflected XSS via the sensors.html status parameter, sensors.html type parameter, sensors.html device parameter, report.html location parameter, group_delete.html group parameter, report_save.html query parameter, sensors.html location parameter, or group_delete.html group parameter.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Serverscheck | Monitoring Software | <= 14.3.3 |
Related Weaknesses (CWE)
References
- http://hyp3rlinx.altervista.org/advisories/CVE-2018-18551-SERVERSCHECK-MONITORINExploitThird Party Advisory
- http://packetstormsecurity.com/files/149914/ServersCheck-Monitoring-Software-14.ExploitThird Party AdvisoryVDB Entry
- http://hyp3rlinx.altervista.org/advisories/CVE-2018-18551-SERVERSCHECK-MONITORINExploitThird Party Advisory
- http://packetstormsecurity.com/files/149914/ServersCheck-Monitoring-Software-14.ExploitThird Party AdvisoryVDB Entry
FAQ
What is CVE-2018-18551?
CVE-2018-18551 is a vulnerability with a CVSS score of 6.1 (MEDIUM). ServersCheck Monitoring Software through 14.3.3 has Persistent and Reflected XSS via the sensors.html status parameter, sensors.html type parameter, sensors.html device parameter, report.html location...
How severe is CVE-2018-18551?
CVE-2018-18551 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-18551?
Check the references section above for vendor advisories and patch information. Affected products include: Serverscheck Monitoring Software.