7 matches found
CVE-2015-6018
The diagnostic-ping implementation on ZyXEL PMG5318-B20A devices with firmware before 1.00AANC.2C0 allows remote attackers to execute arbitrary commands via the PingIPAddr parameter...
Design/Logic Flaw
The diagnostic-ping implementation on ZyXEL PMG5318-B20A devices with firmware before 1.00AANC.2C0 allows remote attackers to execute arbitrary commands via the PingIPAddr parameter...
ZYXEL PMG5318-B20A - OS Command Injection
ZYXEL PMG5318-B20A - OS Command Injection Exploit Title: ZyXEL PMG5318-B20A OS Command Injection Vulnerability Discovered by: Karn Ganeshen CERT VU 870744 Vendor Homepage: www.zyxel.com Version Reported: Firmware version V100AANC0b5 CVE-2015-6018...
Cross site scripting
Cross-site scripting XSS vulnerability in Forms/DiagGeneral2 on the ZyXEL P-660HW series router allows remote attackers to inject arbitrary web script or HTML via the PingIPAddr parameter...
CVE-2008-1257
Cross-site scripting XSS vulnerability in Forms/DiagGeneral2 on the ZyXEL P-660HW series router allows remote attackers to inject arbitrary web script or HTML via the PingIPAddr parameter...
CVE-2008-1257
Cross-site scripting XSS vulnerability in Forms/DiagGeneral2 on the ZyXEL P-660HW series router allows remote attackers to inject arbitrary web script or HTML via the PingIPAddr parameter...
CVE-2008-1257
CVE-2008-1257 is a cross-site scripting (XSS) vulnerability affecting ZyXEL P-660HW series routers, exploitable via the PingIPAddr parameter under Forms/DiagGeneral_2. Attackers can inject arbitrary web script or HTML in the router’s web interface. According to the connected NVD entry, the affect...