2 matches found
DrayTek Vigor2700 Series < 2.8.4 Javascript Injection Vulnerability
Multiple DrayTek Vigor Routers are prone to a javascript injection vulnerability. Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as publish...
CVE-2013-5703
CVE-2013-5703 affects the DrayTek Vigor 2700 router (notably v2.8.3) where a crafted SSID value is mishandled when inserted into the sWlessSurvey list in variables.js. This enables remote attackers to execute arbitrary JavaScript in the router’s web administration context and to modify settings o...