2 matches found
CVE-2020-25205
The web console for Mimosa B5, B5c, and C5x firmware through 2.8.0.2 is vulnerable to stored XSS in the setbanner function of /var/www/core/controller/index.php. An unauthenticated attacker may set the contents of the /mnt/jffs2/banner.txt file, stored on the device's filesystem, to contain...
Mimosa B5 操作系统命令注入漏洞
Mimosa B5 is mimosa's network device Mimosa B5 backhaul is the easiest to deploy and highest capacity unlicensed 5 GHz backhaul solution for short to medium range link applications. A security vulnerability exists in Mimosa B5, B5c that allows injection via authenticated commands in the Throughpu...