A reflective Cross-site scripting (XSS) vulnerability in the free_time_failed.cgi CGI program in selected Zyxel ZyWall, USG, and UAG devices allows remote malicious users to inject arbitrary web script or HTML via the err_msg parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zyxel uag2100 firmware |
||
zyxel uag4100 firmware |
||
zyxel uag5100 firmware |
||
zyxel usg110 firmware |
||
zyxel usg210 firmware |
||
zyxel usg310 firmware |
||
zyxel usg1100 firmware |
||
zyxel usg1900 firmware |
||
zyxel usg2200-vpn firmware |