Cross site scripting

Delta Electronics DX-2100-L1-CN 2.42 is vulnerable to Cross Site Scripting XSS via lform/urlfilter...

Delta Electronics DX-2100RW-WW 操作系统命令注入漏洞

The Delta Electronics DX-2100RW-WW is a router from Delta Electronics China. A security vulnerability exists in the Delta Electronics DX-2100RW-WW version 2.42, which stems from its lform/netdiagnose component that allows attackers to implement command injection...

Delta Electronics DVW-W02W2-E2 操作系统命令注入漏洞

Delta Electronics DVW-W02W2-E2 is an industrial wireless networking solution from Delta Electronics China. A security vulnerability exists in the Delta Electronics DVW-W02W2-E2 version 1.5.0.10, which originates from an attacker being able to implement command injection via a crafted URL...

CVE-2022-33235

Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...

Information disclosure

Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...

CVE-2022-42140

Delta Electronics DX-2100-L1-CN 2.42 is vulnerable to Command Injection via lform/netdiagnose...

PT-2022-6253 · Delta Electronics · Delta Electronics Dvw-W02W2-E2

Name of the Vulnerable Software and Affected Versions: Delta Electronics DVW-W02W2-E2 version 1.5.0.10 Description: The issue is related to a command injection vulnerability via crafted URLs in the web server of the Delta Electronics DVW-W02W2-E2 device. This vulnerability is due to the failure t...

CVE-2022-42139

Summary: CVE-2022-42139 affects Delta Electronics DVW-W02W2-E2 firmware 1.5.0.10. The device’s web server is vulnerable to command injection (OS command injection) via crafted URLs, potentially allowing an attacker to gain full OS access on the device. Public PoCs have been reported; CVSS v3.1 ba...

Delta Electronics DX-2100RW-WW 跨站脚本漏洞

The Delta Electronics DX-2100RW-WW is a router from Delta Electronics China. A security vulnerability exists in the Delta Electronics DX-2100RW-WW version 2.42, which stems from its lform/urlfilter component that allows attackers to implement cross-site scripting...

CVE-2022-42139

Delta Electronics DVW-W02W2-E2 1.5.0.10 is vulnerable to Command Injection via Crafted URL...

CVE-2022-42141

Delta Electronics DX-2100-L1-CN 2.42 is vulnerable to Cross Site Scripting XSS via lform/urlfilter...

CVE-2022-42139

Delta Electronics DVW-W02W2-E2 1.5.0.10 is vulnerable to Command Injection via Crafted URL...

CVE-2022-42141

CVE-2022-42141 affects Delta Electronics DX-2100-L1-CN (v2.42); the issue is Cross Site Scripting (XSS) via the lform/urlfilter component. The available sources confirm XSS without details on a fixed version. The Red Hat and NVD records consistently describe a CXSS vulnerability with medium overa...

CVE-2022-42140

Delta Electronics DX-2100-L1-CN (firmware 2.42) is affected by CVE-2022-42140 due to an OS command injection vulnerability in the lform/net_diagnose component. The Red Hat/CISA entries indicate an authenticated OS command injection via the web configuration service, potentially enabling root comp...

PT-2022-26281 · Delta Electronics · Delta Electronics Dx-2100-L1-Cn

Name of the Vulnerable Software and Affected Versions: Delta Electronics DX-2100-L1-CN version 2.42 Description: The issue is related to Cross Site Scripting XSS via lform/urlfilter. This means that an attacker could potentially inject malicious scripts into the website, allowing them to steal us...

CVE-2022-33235

Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...

CVE-2022-42140

Delta Electronics DX-2100-L1-CN 2.42 is vulnerable to Command Injection via lform/netdiagnose...

PT-2022-6344 · Delta Electronics · Dx-2100-L1-Cn

Name of the Vulnerable Software and Affected Versions: Delta Electronics DX-2100-L1-CN version 2.42 Description: The issue exists due to the lack of neutralization of special elements used in the operating system command by the lform/net diagnose component of the Delta Electronics DX-2100-L1-CN...

CVE-2022-42141

Delta Electronics DX-2100-L1-CN 2.42 is vulnerable to Cross Site Scripting XSS via lform/urlfilter...

CVE-2022-33238

Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon...