The web interface of Netgear’s SRX5308 router software has vulnerabilities that allow attackers to perform cross-site scripting attacks.

The vulnerability in the web interface of Netgear SRX5308 integrated software routers exists because measures are not taken to protect the structure of the web page when processing the argument smtpServer.fromAddr. Exploiting this vulnerability allows a malicious actor to perform cross-site...

NETGEAR SRX5308 Cross-Site Scripting Vulnerability (CNVD-2023-43019)

The NETGEAR SRX5308 is a VPN firewall appliance from NETGEAR. The NETGEAR SRX5308 suffers from a cross-site scripting vulnerability that originates from an incorrect operation of the parameter smtpServer.fromAddr. The vulnerability can be exploited by an attacker to obtain sensitive information...

CVE-2023-2383 Netgear SRX5308 Web Management Interface cross site scripting

A vulnerability was found in Netgear SRX5308 up to 4.3.5-3. It has been classified as problematic. This affects an unknown part of the file scgi-bin/platform.cgi?page=firewalllogsemail.htm of the component Web Management Interface. The manipulation of the argument smtpServer.fromAddr leads to cro...

PT-2023-2731 · NetGear · Netgear Srx5308

Name of the Vulnerable Software and Affected Versions: Netgear SRX5308 versions up to 4.3.5-3 Description: A vulnerability exists in the Web Management Interface of the Netgear SRX5308, affecting the file scgi-bin/platform.cgi?page=firewall logs email.htm. The issue arises from the manipulation o...