Lucene search

CVE-2014-1407

🗓️ 10 Jan 2014 16:06:47Reported by mitreType

cve🔗 web.nvd.nist.gov👁 27 Views🌐 WEB

CVE-2014-1407 XSS vulnerabilities in Conceptronic C54APM access poin

Reporter	Title	Published	Views	Family All 3
NVD	CVE-2014-1407	10 Jan 201416:47	–	nvd
Prion	Cross site scripting	10 Jan 201416:47	–	prion
Cvelist	CVE-2014-1407	10 Jan 201416:00	–	cvelist

Nvd

Node

conceptronic c54apm_firmwareMatch1.26

AND

conceptronic c54apmMatchv2

Source	Link
osvdb	www.osvdb.org/101919
antoniovazquezblanco	www.antoniovazquezblanco.github.io/docs/advisories/Advisory_C54APM_Multiple.pdf
osvdb	www.osvdb.org/101921

Parameter	Position	Path	Description	CWE
submit-url	query param	/goform/formWlSiteSurvey	Multiple cross-site scripting (XSS) vulnerabilities allow remote attackers to inject arbitrary web script or HTML.	CWE-79
wlan-url	query param	/goform/formWlanSetup	Multiple cross-site scripting (XSS) vulnerabilities allow remote attackers to inject arbitrary web script or HTML.	CWE-79

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jan 2014 16:47Current

5.9Medium risk

Vulners AI Score5.9

CVSS24.3

EPSS0.00249

CWE-79