Multiple cross-site scripting (XSS) vulnerabilities in Xavi X7968 allow remote malicious users to inject arbitrary web script or HTML via the (1) pvcName parameter to webconfig/wan/confirm.html/confirm or (2) host_name_txtbox parameter to webconfig/lan/lan_config.html/local_lan_config.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xavi x7968 - |