3 matches found
Wavlink WN-535G3 - Cross-Site Scripting
Wavlink WN-535G3 contains a POST cross-site scripting vulnerability via the hostname parameter at /cgi-bin/login.cgi. id: CVE-2022-30489 info: name: Wavlink WN-535G3 - Cross-Site Scripting author: For3stCo1d severity: medium description: | Wavlink WN-535G3 contains a POST cross-site scripting...
CVE-2022-30489
WAVLINK WN535 G3 was discovered to contain a cross-site scripting XSS vulnerability via the hostname parameter at /cgi-bin/login.cgi...
CVE-2022-30489
Vulnerability (CVE-2022-30489) : WAVLINK WN535 G3 (WN535 G3) is affected by a cross-site scripting (XSS) flaw in the POST parameter hostname on /cgi-bin/login.cgi. Root cause: insufficient input validation in the hostname field leading to script injection. Impact: attacker could cause arbitrary s...