A cross-site scripting (XSS) vulnerability in Aigital Wireless-N Repeater Mini_Router v0.131229 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the wl_ssid parameter at /boafrm/formHomeWlanSetup.
References
Link | Resource |
---|---|
https://packetstormsecurity.com/files/172057/Aigital-Wireless-N-Repeater-Mini_Router.0.131229-Cross-Site-Scripting.html | Exploit Third Party Advisory VDB Entry |
https://packetstormsecurity.com/files/172057/Aigital-Wireless-N-Repeater-Mini_Router.0.131229-Cross-Site-Scripting.html | Exploit Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 08:00
Type | Values Removed | Values Added |
---|---|---|
References | () https://packetstormsecurity.com/files/172057/Aigital-Wireless-N-Repeater-Mini_Router.0.131229-Cross-Site-Scripting.html - Exploit, Third Party Advisory, VDB Entry |
08 May 2023, 14:04
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.4 |
CPE | cpe:2.3:o:aigital:wireless-n_repeater_mini_router_firmware:0.131229:*:*:*:*:*:*:* cpe:2.3:h:aigital:wireless-n_repeater_mini_router:-:*:*:*:*:*:*:* |
|
CWE | CWE-79 | |
References | (MISC) https://packetstormsecurity.com/files/172057/Aigital-Wireless-N-Repeater-Mini_Router.0.131229-Cross-Site-Scripting.html - Exploit, Third Party Advisory, VDB Entry |
28 Apr 2023, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-04-28 21:15
Updated : 2024-11-21 08:00
NVD link : CVE-2023-30405
Mitre link : CVE-2023-30405
CVE.ORG link : CVE-2023-30405
JSON object : View
Products Affected
aigital
- wireless-n_repeater_mini_router
- wireless-n_repeater_mini_router_firmware
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')