CVE-2019-9725
The CVE-2019-9725 entry describes a Persistent XSS flaw in the Web manager (Commander) of Korenix JetPort 5601 and 5601f devices, exploitable via the Port Alias field under Serial Setting. Affected component: Web UI; root cause: input in Port Alias not properly sanitized, enabling stored/reflecti...