| Title | Netis WF2780 V2.1.41925 Cross Site Scripting |
|---|
| Description | A Cross-site Scripting (XSS) vulnerability was found in the Netis model WF2780 application and management.
To carry out the attack, it is necessary to access the "Wireless 2.4G" menu. The affected field is "SSID ". In this field, it is possible to inject a Cross-Site Scripting script.
Script: <img/src/onerror=prompt(8)> |
|---|
| Source | ⚠️ http://x.x.x.x:8080/index.htm |
|---|
| User | Havook (UID 71104) |
|---|
| Submission | 02/14/2025 10:07 PM (1 Year ago) |
|---|
| Moderation | 02/23/2025 10:43 AM (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 296607 [Netis WF2780 2.1.41925 Wireless 2.4G Menu SSID cross site scripting] |
|---|
| Points | 16 |
|---|