A stored cross-site scripting (XSS) issue was discovered in ControlByWeb X-320M-I Web-Enabled Instrumentation-Grade Data Acquisition module 1.05 with firmware revision v1.05. An authenticated user can inject arbitrary script via setup.html in the web interface.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-03-17T21:10:38
Updated: 2024-08-05T11:23:08.527Z
Reserved: 2018-10-31T00:00:00
Link: CVE-2018-18882
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-03-21T16:00:29.810
Modified: 2024-11-21T03:56:49.047
Link: CVE-2018-18882
Redhat
No data.