XSS Vulnerability in MetInfo 6.1.2 via /admin/index.php bigclass parameter

XSS Vulnerability in MetInfo 6.1.2 via /admin/index.php bigclass parameter

CVE-2018-18296 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

MetInfo 6.1.2 has XSS via the /admin/index.php bigclass parameter in an n=column&a=doadd action.

Learn more about our Web Application Penetration Testing UK.