Cross site scripting

2018-11-2810:29:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

35.3%

JSON

cgi_handle_request in uhttpd in OpenWrt through 18.06.1 and LEDE through 17.01 has unauthenticated reflected XSS via the URI, as demonstrated by a cgi-bin/?[XSS] URI.

CPENameOperatorVersion
ledele17.01
openwrtle18.06.1

CPE	Name	Operator	Version
	lede	le	17.01
	openwrt	le	18.06.1

References

bugs.openwrt.org/index.php?do=details&task_id=1974

0.001 Low

EPSS

Percentile

35.3%

JSON

Related for PRION:CVE-2018-19630