John Elder

**Name of the Vulnerable Software and Affected Versions** Columbia Weather MicroServer version MS 2.6.9900 **Description** A stored Cross-site scripting (XSS) issue allows remote authenticated users to inject arbitrary web script via the "changestationname.php" endpoint. **Recommendations** For version MS 2.6.9900, consider restricting access to the `changestationname.php` endpoint until a fix is available. As a temporary workaround, avoid using the `changestationname.php` endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Columbia Weather MicroServer version MS 2.6.9900 **Description** The issue allows an authenticated web user to access an alternative configuration page, specifically the `config main.php` page, which enables manipulation of the device. **Recommendations** For version MS 2.6.9900, restrict access to the `config main.php` page to prevent unauthorized device manipulation.

**Name of the Vulnerable Software and Affected Versions** Columbia Weather MicroServer version MS 2.6.9900 **Description** The issue arises from the BACnet daemon's failure to properly validate input. This could allow a remote attacker to send specially crafted packets, potentially causing the device to become unavailable. **Recommendations** For version MS 2.6.9900, consider disabling the BACnet daemon until a patch is available to prevent potential exploitation.

**Name of the Vulnerable Software and Affected Versions** Columbia Weather MicroServer version MS 2.6.9900 **Description** The issue allows an authenticated web user to execute commands directly on the underlying operating system due to unsanitized user input in the networkdiags.php file. **Recommendations** For version MS 2.6.9900, consider restricting access to the networkdiags.php file until a patch is available to prevent exploitation.