First published: Tue Oct 16 2018(Updated: )
XSS exists in the MetInfo 6.1.2 admin/index.php page via the anyid parameter.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Metinfo Metinfo | =6.1.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability description of CVE-2018-18374 is XSS exists in the MetInfo 6.1.2 admin/index.php page via the anyid parameter.
The affected software version of CVE-2018-18374 is MetInfo 6.1.2.
The severity rating of CVE-2018-18374 is medium, with a severity value of 5.4.
The XSS vulnerability in CVE-2018-18374 can be exploited by injecting malicious scripts through the anyid parameter on the admin/index.php page of MetInfo 6.1.2.
Yes, a fix for CVE-2018-18374 is available. It is recommended to update to a patched version of MetInfo.