Lucene search
China National Vulnerability DatabaseCNVD-2021-81966HistoryOct 14, 2021 - 12:00 a.m.
Draytek VigorConnect Cross-Site Scripting Vulnerability
2021-10-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.001 Low
EPSS
Percentile
25.0%
A stored cross-site scripting vulnerability exists in the Profile Name field of the Floor Plan (Network Menu) page in Draytek VigorConnect version 1.6.0-B3, the native network management software for DrayTek devices. The vulnerability stems from improper validation of user input. An attacker could exploit this vulnerability to insert malicious code.
Related
cvelist
cvelist
CVE-2021-20128
2021-10-13 15:49:30
nvd
nvd
CVE-2021-20128
2021-10-13 16:15:07
cve
cve
CVE-2021-20128
2021-10-13 16:15:07
prion
prion
Design/Logic Flaw
2021-10-13 16:15:00