Cross-site scripting (XSS) vulnerability in the Parental Controls section in Linksys EA6500 with firmware 1.1.28.147876 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to the Blocked Specific Sites section.
References
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 01:52
Type | Values Removed | Values Added |
---|---|---|
References | () http://securityevaluators.com/knowledge/case_studies/routers/Vulnerability_Catalog.pdf - Exploit | |
References | () http://securityevaluators.com/knowledge/case_studies/routers/linksys_ea6500.php - Exploit |
Information
Published : 2014-09-29 22:55
Updated : 2024-11-21 01:52
NVD link : CVE-2013-3065
Mitre link : CVE-2013-3065
CVE.ORG link : CVE-2013-3065
JSON object : View
Products Affected
linksys
- ea6500_firmware
- ea6500
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')