Cross-site scripting (XSS) vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote attackers to inject arbitrary web script or HTML via a crafted DHCP Host Name option, which is not properly handled during rendering of the DHCP table in wlanAccess.asp.
CPE | Name | Operator | Version |
---|---|---|---|
hotbox_router_firmware | eq | 2.1.11 |