2 matches found
CVE-2021-20128
The CVE-2021-20128 vulnerability affects DrayTek VigorConnect 1.6.0-B3, specifically the Profile Name field in the floor plan (Network Menu) page. It is a stored XSS flaw caused by improper sanitization of user input in that field. The exploit would rely on injecting malicious script via the Prof...
CVE-2021-20128
The Profile Name field in the floor plan Network Menu page in Draytek VigorConnect 1.6.0-B3 was found to be vulnerable to stored XSS, as user input is not properly sanitized...