CVE-2018-14027

Digisol Wireless Wifi Home Router HR-3300 allows XSS via the userid or password parameter to the admin login page.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:digisol:dg-hr-3300_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:digisol:dg-hr-3300:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:48

Type Values Removed Values Added
References () https://indiancybersecuritysolutions.com/cve-2018-14027-xss-scripting-brute-forceĀ - Exploit, Third Party Advisory () https://indiancybersecuritysolutions.com/cve-2018-14027-xss-scripting-brute-forceĀ - Exploit, Third Party Advisory

Information

Published : 2019-07-05 16:15

Updated : 2024-11-21 03:48


NVD link : CVE-2018-14027

Mitre link : CVE-2018-14027

CVE.ORG link : CVE-2018-14027


JSON object : View

Products Affected

digisol

  • dg-hr-3300
  • dg-hr-3300_firmware
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')