2 matches found
CVE-2015-1437 XSS In ASUS Router.
Title:- Reflected XSS vulnarbility in Asus RT-N10 Plus router Author: Kaustubh G. Padwad Product: ASUS Router RT-N10 Plus Firmware: 2.1.1.1.70 Severity: HIGH Auth: Not requierd CVE ID: CVE-2015-1437 Description: Vulnerable Parameter: flag= Vulnerability Class: Cross Site Scripting...
CVE-2015-1437
The CVE-2015-1437 issue affects Asus RT-N10+ (D1) routers with firmware 2.1.1.1.70, exposing two reflected XSS vectors via the flag parameter (to result_of_get_changed_status.asp and error_page.htm). Consequences described include arbitrary script injection and potential session-related impacts; ...