| Título | Castlenet Technology DOCSIS 3.0 CBW383G2N_0002.5510mp5.006 Basic Cross Site Scripting |
|---|
| Descrição | The Cross-Site Scripting (XSS) vulnerability was identified in the management application of the Castlenet Technology DOCSIS 3.0 router. To exploit this vulnerability, it is necessary to access the "Wireless" menu and modify the "SSID" field, which is an input field used to set the wireless network name. The affected field is "SSID", where it is possible to inject a malicious Cross-Site Scripting (XSS) script.
script: <img/src/onerror=prompt(8)> |
|---|
| Fonte | ⚠️ http://x.x.x.x:8080/wlanPrimaryNetwork.asp |
|---|
| Utilizador | Fergod (UID 55882) |
|---|
| Submissão | 01/03/2025 02h12 (há 1 Ano) |
|---|
| Moderação | 11/03/2025 15h53 (11 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 299284 [Castlenet CBW383G2N até 20250301 Wireless Menu /wlanPrimaryNetwork.asp SSID Script de Site Cruzado] |
|---|
| Pontos | 17 |
|---|