Lucene search
K

4 matches found

Nuclei
Nuclei
added yesterday47 views

Zyxel ZyWal/USG/UAG Devices - Cross-Site Scripting

Zyxel ZyWall, USG, and UAG devices allow remote attackers to inject arbitrary web script or HTML via the errmsg parameter freetimefailed.cgi CGI program, aka reflective cross-site scripting. id: CVE-2019-12581 info: name: Zyxel ZyWal/USG/UAG Devices - Cross-Site Scripting author: n-thumann...

6.1CVSS6.2AI score0.064EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/01/07 9:29 a.m.8 views

CVE-2019-12581

A reflective Cross-site scripting XSS vulnerability in the freetimefailed.cgi CGI program in selected Zyxel ZyWall, USG, and UAG devices allows remote attackers to inject arbitrary web script or HTML via the errmsg parameter...

6.1CVSS6AI score0.064EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/06/27 2:10 p.m.24 views

CVE-2019-12581

A reflective Cross-site scripting XSS vulnerability in the freetimefailed.cgi CGI program in selected Zyxel ZyWall, USG, and UAG devices allows remote attackers to inject arbitrary web script or HTML via the errmsg parameter...

6.1AI score0.064EPSS
Exploits1References4
CVE
CVE
added 2019/06/27 2:10 p.m.82 views

CVE-2019-12581

The CVE-2019-12581 issue affects Zyxel ZyWall, USG, and UAG devices, where the free_time_failed.cgi CGI is vulnerable to a reflective XSS via the err_msg parameter. The Nuclei template specifies that remote attackers can inject arbitrary web script or HTML, with the attack context limited to the ...

6.1CVSS6.1AI score0.064EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder