| 标题 | Edimax Wireless Router BR-6288ACL 1.30 Cross Site Scripting |
|---|
| 描述 | In the 'wireless5g_basic.asp' directory within the user account, there is an unrestricted stored Cross-Site Scripting (XSS) vulnerability and injection attacks on the 'SSID' parameter of the "Edimax wireless router" system. This function executes the user parameter without restrictions. To view the script in action, simply access the 'status.asp' directory.
Malicious attackers can exploit this vulnerability to obtain sensitive information from clients.
|
|---|
| 来源 | ⚠️ http://x.x.x.x:8080/index.asp |
|---|
| 用户 | Fergod (UID 55882) |
|---|
| 提交 | 2025-02-14 16時33分 (1 年前) |
|---|
| 管理 | 2025-02-23 08時02分 (9 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 296602 [Edimax BR-6288ACL 1.30 wireless5g_basic.asp SSID 跨网站脚本] |
|---|
| 积分 | 17 |
|---|