CVE-2020-15037

NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Reports-Devices.php page st[] parameter.

Date published : 2020-07-07

https://gist.github.com/sudoninja-noob/c1722c118abc7a562a9a0de726266a19

https://www.nedi.ch/download/