5 matches found
CVE-2007-6707
Multiple cross-site scripting XSS vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-3574...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-3574...
wirelessg-multi.txt
http://www.gnucitizen.org/blog/persistent-xss-and-csrf-on-wireless-g-adsl-gateway-with-speedbooster-wag54gs The following vulns were found on 24 June 2007 and were tested against firmware V1.00.06. The specific persistent XSS holes mentioned in this advisory were fixed by Cisco on firmware versio...
CVE-2007-3574
CVE-2007-3574 records multiple XSS vulnerabilities in Cisco Linksys WAG54GS Wireless-G ADSL Gateway, specifically in setup.cgi with firmware 1.00.06. An attacker can inject arbitrary web script or HTML via the parameters c4_trap_ip_, devname, snmp_getcomm, and snmp_setcomm, exploiting unsanitized...
CVE-2007-3574
Multiple cross-site scripting XSS vulnerabilities in setup.cgi on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.00.06 firmware allow remote attackers to inject arbitrary web script or HTML via the 1 c4trapip, 2 devname, 3 snmpgetcomm, or 4 snmpsetcomm parameter...