| عنوان | Castlenet Technology DOCSIS 3.0 CBW383G2N_0002.5510mp5.006 Basic Cross Site Scripting |
|---|
| الوصف | The Cross-Site Scripting (XSS) vulnerability was identified in the management application of the Castlenet Technology DOCSIS 3.0 router. To exploit this vulnerability, it is necessary to access the "Wireless" menu and modify the "SSID" field, which is an input field used to set the wireless network name. The affected field is "SSID", where it is possible to inject a malicious Cross-Site Scripting (XSS) script.
script: <img/src/onerror=prompt(8)> |
|---|
| المصدر | ⚠️ http://x.x.x.x:8080/wlanPrimaryNetwork.asp |
|---|
| المستخدم | Fergod (UID 55882) |
|---|
| ارسال | 01/03/2025 02:12 AM (1 سنة منذ) |
|---|
| الاعتدال | 11/03/2025 03:53 PM (11 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 299284 [Castlenet CBW383G2N حتى 20250301 Wireless Menu /wlanPrimaryNetwork.asp SSID البرمجة عبر المواقع] |
|---|
| النقاط | 17 |
|---|