Lucene search
K

5 matches found

OSV
OSV
added 2021/12/07 10:15 p.m.7 views

CVE-2021-44148

GL.iNet GL-AR150 2.x before 3.x devices, configured as repeaters, allow cgi-bin/routercgi?action=scanwifi XSS when an attacker creates an SSID with an XSS payload as the name...

6.1CVSS6.4AI score0.00648EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2021/12/07 10:15 p.m.2 views

CVE-2021-44148

GL.iNet GL-AR150 2.x before 3.x devices, configured as repeaters, allow cgi-bin/routercgi?action=scanwifi XSS when an attacker creates an SSID with an XSS payload as the name...

6.1CVSS6.4AI score0.00648EPSS
Exploits1References2
Prion
Prion
added 2021/12/07 10:15 p.m.18 views

Cross site scripting

GL.iNet GL-AR150 2.x before 3.x devices, configured as repeaters, allow cgi-bin/routercgi?action=scanwifi XSS when an attacker creates an SSID with an XSS payload as the name...

4.3CVSS6AI score0.00648EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/12/07 9:3 p.m.14 views

CVE-2021-44148

GL.iNet GL-AR150 2.x before 3.x devices, configured as repeaters, allow cgi-bin/routercgi?action=scanwifi XSS when an attacker creates an SSID with an XSS payload as the name...

6.2AI score0.00648EPSS
Exploits1References1
CVE
CVE
added 2021/12/07 9:3 p.m.45 views

CVE-2021-44148

GL.iNet GL-AR150 2.x before 3.x devices configured as repeaters are affected by a cross‑site scripting (XSS) vulnerability in cgi-bin/router_cgi?action=scanwifi. An attacker can embed an XSS payload in the SSID name, triggering XSS. This is documented in CVE-2021-44148 (NVD/NVD-derived descriptio...

6.1CVSS6AI score0.00648EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder