Cross-site scripting vulnerability in WRH-300WH-H v2.12 and earlier, and WTC-300HWH v1.09 and earlier allows a remote unauthenticated attacker to inject an arbitrary script.
[
{
"vendor": "ELECOM CO.,LTD.",
"product": "WRH-300WH-H",
"versions": [
{
"version": "v2.12 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WTC-300HWH",
"versions": [
{
"version": "v1.09 and earlier",
"status": "affected"
}
]
}
]