Cross-site scripting vulnerability exists in WAB-I1750-PS and WAB-S1167-PS due to improper processing of input values in menu.cgi. If a user views a malicious web page while logged in to the product, an arbitrary script may be executed on the userβs web browser.
[
{
"vendor": "ELECOM CO.,LTD.",
"product": "WAB-I1750-PS",
"versions": [
{
"version": "v1.5.10 and earlier",
"status": "affected"
}
]
},
{
"vendor": "ELECOM CO.,LTD.",
"product": "WAB-S1167-PS",
"versions": [
{
"version": "v1.5.6 and earlier",
"status": "affected"
}
]
}
]