CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-15037

NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Reports-Devices.php page st[] parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.1%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

https://gist.github.com/sudoninja-noob/c1722c118abc7a562a9a0de726266a19
https://www.nedi.ch/download/
https://gist.github.com/sudoninja-noob/c1722c118abc7a562a9a0de726266a19
https://www.nedi.ch/download/

Products affected by CVE-2020-15037

Nedi » Nedi » Version: 1.9c

cpe:2.3:a:nedi:nedi:1.9c

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-15037

Products

Pricing

Contact Us