6 matches found
CVE-2016-7808
Cross-site scripting vulnerability in Corega CG-WLBARGMH and CG-WLBARGNL allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting vulnerability in Corega CG-WLBARGMH and CG-WLBARGNL allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2016-7808
Cross-site scripting vulnerability in Corega CG-WLBARGMH and CG-WLBARGNL allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2016-7808
CVE-2016-7808 affects Corega CG-WLBARGMH and CG-WLBARGNL routers. The issue is a Cross-site Scripting (CWE-79) vulnerability caused by insufficient input filtering in the affected web interfaces, allowing remote attackers to inject arbitrary web script/HTML via unspecified vectors. Multiple conne...
CVE-2016-1158
CVE-2016-1158 affects Corega CG-WLBARGMH and CG-WLBARGNL wireless routers. The described issue is a Cross-Site Request Forgery (CSRF) that lets an attacker hijack administrator sessions to perform administrative actions when a logged-in user visits a malicious page. Connected sources (JVN/JVNDB, ...
JVN#59349382: Multiple Corega wireless LAN routers vulnerable to cross-site request forgery
Multiple wireless LAN routers provided by Corega Inc contain a cross-site request forgery vulnerability CWE-352. Impact If a user views a malicious page while logged into the management screen, various administrative functions may be performed. Solution Apply a workaround The following workaround...