CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

In firmware version MS2.6.9900 of Columbia Weather MicroServer, a networkdiags.php reflected Cross-site scripting XSS vulnerability allows remote authenticated users to inject arbitrary web script...

5.4CVSS5.7AI score0.00118EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 6:40 a.m.•4 views

CVE-2018-18875

In firmware version MS2.6.9900 of Columbia Weather MicroServer, a stored Cross-site scripting XSS vulnerability allows remote authenticated users to inject arbitrary web script via changestationname.php...

5.4CVSS5.5AI score0.00118EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 8:55 p.m.•2 views

CVE-2005-2201

Unknown vulnerability in the MicroServer Web Server for Xerox WorkCentre Pro Color 2128, 2636, and 3545, version 0.001.04.044 through 0.001.04.504, allow attackers to cause a denial of service or access files via crafted HTTP requests...

6.4CVSS7AI score0.00409EPSS

Exploits0References1

CNNVD•added 2025/01/23 12:0 a.m.•1 views

Microserver Beta10 授权问题漏洞

Microserver Beta10 is a suite from Microserver, Inc. designed for fire extinguisher management, facility management, security and surveillance companies. An authorization issue vulnerability exists in Microserver Beta10 that stems from not providing proper authorization controls...

9.8CVSS6.8AI score0.0025EPSS

Exploits0References2

OSV•added 2019/06/18 3:15 p.m.•1 views

CVE-2018-18878

In firmware version MS2.6.9900 of Columbia Weather MicroServer, the BACnet daemon does not properly validate input, which could allow a remote attacker to send specially crafted packets causing the device to become unavailable...

7.5CVSS5.8AI score

Exploits0References2

OSV•added 2019/06/18 3:15 p.m.•1 views

CVE-2018-18876

In firmware version MS2.6.9900 of Columbia Weather MicroServer, a readoutsrd.php directory traversal issue makes it possible to read any file present on the underlying operating system...

5.3CVSS5.8AI score0.00363EPSS

Exploits0References2

NVD•added 2019/06/18 3:15 p.m.•5 views

CVE-2018-18875

5.4CVSS5.7AI score0.00118EPSS

Exploits0References2

NVD•added 2019/06/18 3:15 p.m.•7 views

CVE-2018-18877

In firmware version MS2.6.9900 of Columbia Weather MicroServer, an authenticated web user can access an alternative configuration page configmain.php that allows manipulation of the device...

8.8CVSS8.7AI score0.00252EPSS

Exploits0References2

OSV•added 2019/06/18 3:15 p.m.•0 views

CVE-2018-18877

In firmware version MS2.6.9900 of Columbia Weather MicroServer, an authenticated web user can access an alternative configuration page configmain.php that allows manipulation of the device...

8.8CVSS5.7AI score

Exploits0References2

NVD•added 2019/06/18 3:15 p.m.•7 views

CVE-2018-18876

In firmware version MS2.6.9900 of Columbia Weather MicroServer, a readoutsrd.php directory traversal issue makes it possible to read any file present on the underlying operating system...

5.3CVSS6AI score0.00363EPSS

Exploits0References2

NVD•added 2019/06/18 3:15 p.m.•5 views

CVE-2018-18878

7.8CVSS7.8AI score0.01148EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by