Cross Site Scripting (XSS) Vulnerability in Floodlight Web Console

CVE-2018-1000163 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Floodlight version 1.2 and earlier contains a Cross Site Scripting (XSS) vulnerability in the web console that can result in javascript injections into the web page. This attack appears to be exploitable via the victim browsing the web console.

Learn more about our Web App Pen Testing.