2 matches found
CVE-2020-29655
An injection vulnerability exists in RT-AC88U Download Master before 3.1.0.108. Accessing MainLogin.asp?flag=1=FOOBAR=/downloadmaster/task.asp will redirect to the login site, which will show the value of the parameter productname within the title. An attacker might be able to influence the...
CVE-2020-29655
CVE-2020-29655 affects ASUS RT-AC88U Download Master prior to version 3.1.0.108. The root cause is unsanitized input passed through Main_Login.asp?flag=1&productname=FOOBAR&url=/downloadmaster/task.asp, which leads to text injection in the login page title and could influence its appearance. Publ...