542 matches found
Cross site scripting
LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a stored cross-site scripting XSS vulnerability via the component /system/sshkeys.js...
CVE-2023-24182
LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a stored cross-site scripting XSS vulnerability via the component /system/sshkeys.js...
CVE-2023-24182
CVE-2023-24182 affects OpenWrt LuCI (OpenWrt-22.03 branch git-22.361.69894-438c598) with a stored XSS in /system/sshkeys.js. Root cause is improper handling of input in the sshkeys.js component, enabling stored XSS. Impact is low confidentiality/integrity (per CVSS: MEDIUM, C:C/L/I:L; A:N). Mitig...
CVE-2023-24182
LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a stored cross-site scripting XSS vulnerability via the component /system/sshkeys.js...
PT-2023-5118 · Luci +1 · Luci +1
Name of the Vulnerable Software and Affected Versions: OpenWrt versions prior to the version with the fixed LuCI openwrt-22.03 branch LuCI openwrt-22.03 branch git-22.361.69894-438c598 Description: The issue is related to a stored cross-site scripting XSS vulnerability in the sshkeys.js component...
CVE-2023-24181
LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /openvpn/pageswitch.htm...
CVE-2023-24181
LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /openvpn/pageswitch.htm...
Cross site scripting
LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /openvpn/pageswitch.htm...
OpenWrt LuCI 跨站脚本漏洞
OpenWrt LuCI is a graphical configuration interface for OpenWrt Linux distribution. A security vulnerability exists in OpenWrt LuCI, which was discovered to contain a Reflected Cross-Site Scripting XSS vulnerability via the component /openvpn/pageswitch.htm...
CVE-2023-24181
LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /openvpn/pageswitch.htm...
CVE-2023-24181
LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /openvpn/pageswitch.htm...
PT-2023-19461 · Luci · Luci
Name of the Vulnerable Software and Affected Versions: LuCI openwrt-22.03 branch git-22.361.69894-438c598 Description: A reflected cross-site scripting XSS issue was found in LuCI via the component "/openvpn/pageswitch.htm". This allows for potential XSS attacks. Recommendations: For LuCI...
OpenWrt LuCI 跨站脚本漏洞
OpenWrt LuCI is a graphical configuration interface for OpenWrt Linux distribution. A security vulnerability exists in OpenWrt LuCI, which was discovered to contain a stored cross-site scripting XSS vulnerability via the component /system/sshkeys.js...
CVE-2023-24181
CVE-2023-24181 affects LuCI on the OpenWrt 22.03 branch (git-22.361.69894-438c598) and is a reflected XSS in the component "/openvpn/pageswitch.htm". The vulnerability is described as a reflected Cross-Site Scripting issue with network access (AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N); exploitation re...
Netgear Orbi Satellite RBS750 ubus backend communications command execution vulnerability
Talos Vulnerability Report TALOS-2022-1597 Netgear Orbi Satellite RBS750 ubus backend communications command execution vulnerability March 21, 2023 CVE Number CVE-2022-36429 SUMMARY A command execution vulnerability exists in the ubus backend communications functionality of Netgear Orbi Satellite...
The vulnerability of the luci-mod-system web interface of the LuCI configuration tool in the embedded operating system OpenWrt allows a hacker to perform cross-site scripting attacks.
The vulnerability of the Luci-mod-system web interface configuration module in the embedded operating system OpenWrt is related to the lack of protection for the web page structure during the processing of SSH keys from the /etc/dropbear/authorizedkeys file. Exploiting this vulnerability allows a...
CVE-2022-41435
OpenWRT LuCI version git-22.140.66206-02913be was discovered to contain a stored cross-site scripting XSS vulnerability in the component /system/sshkeys.js. This vulnerability allows attackers to execute arbitrary web scripts or HTML via crafted public key comments...
CVE-2022-41435
OpenWRT LuCI version git-22.140.66206-02913be was discovered to contain a stored cross-site scripting XSS vulnerability in the component /system/sshkeys.js. This vulnerability allows attackers to execute arbitrary web scripts or HTML via crafted public key comments...
Cross site scripting
OpenWRT LuCI version git-22.140.66206-02913be was discovered to contain a stored cross-site scripting XSS vulnerability in the component /system/sshkeys.js. This vulnerability allows attackers to execute arbitrary web scripts or HTML via crafted public key comments...
OpenWrt LuCI 跨站脚本漏洞
OpenWrt LuCI is a graphical configuration interface for OpenWrt Linux distribution. A cross-site scripting vulnerability exists in the OpenWrt LuCI git-22.140.66206-02913be version, which stems from the discovery of a stored cross-site scripting XSS vulnerability contained in the component...