NETGEAR SRX5308 跨站脚本漏洞

The NETGEAR SRX5308 is a VPN firewall appliance from NETGEAR. The NETGEAR SRX5308 suffers from a cross-site scripting vulnerability that originates from a misuse of the parameter dhcp.SecDnsIPByte2. The vulnerability can be exploited by an attacker to obtain sensitive information such as user...

PT-2023-2608 · NetGear · Netgear Srx5308

Name of the Vulnerable Software and Affected Versions: Netgear SRX5308 versions up to 4.3.5-3 Description: A vulnerability exists in the Web Management Interface of the Netgear SRX5308, affecting the file scgi-bin/platform.cgi?page=dmz setup.htm. The issue arises from insufficient input validatio...