CVE-2018-15703

Summary

Advantech WebAccess 8.3.2 and below is vulnerable to multiple reflected cross site scripting vulnerabilities. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim to supply malicious HTML or JavaScript code to WebAccess, which is then reflected back to the victim and executed by the web browser.

Affected Software

VendorProductVersion RangeStatus
AdvantechAdvantech WebAccess8.3.2 and belowaffected

Weaknesses

  • Reflected Cross Site Scripting

ADP Enrichment

CVE Program Container

Additional References

References