3 matches found
CVE-2018-4065
CVE-2018-4065 : A reflected cross-site scripting vulnerability exists in Sierra Wireless AirLink ES450 FW 4.9.3 via the ACEManager ping_result.cgi. A specially crafted HTTP ping can cause JavaScript to execute in the victim’s browser when the user is lured to click a link or embedded URL. Affecte...
Sierra Wireless AirLink ES450 ACEManager ping_result.cgi Cross Site Scripting Vulnerability
An exploitable cross-site scripting vulnerability exists in the ACEManager pingresult.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP ping request can cause reflected javascript code execution, resulting in the execution of javascript code running on the...
Sierra Wireless AirLink ES450 ACEManager ping_result.cgi Cross Site Scripting
Talos Vulnerability Report TALOS-2018-0750 Sierra Wireless AirLink ES450 ACEManager pingresult.cgi Cross-Site Scripting Vulnerability April 25, 2019 CVE Number CVE-2018-4065 Summary An exploitable cross-site scripting vulnerability exists in the ACEManager pingresult.cgi functionality of Sierra...