The vulnerability of the set_lang_CountryCode() function in the login.cgi script of the Wavlink AC3000 (WL-WN533A8) router microprogramming system allows a hacker to perform cross-site scripting attacks and gain unauthorized access to protected information.
The vulnerability of the setlangCountryCode function in the login.cgi script of the Wavlink AC3000 WL-WN533A8 router microprogramming system is related to the failure to remove scipt-related HTML tags from web pages when processing the langue parameter. Exploiting this vulnerability can allow an...