A stored cross-site scripting (XSS) vulnerability exists in the Web Interface for OpenWRT LuCI version 19.07 which allows malicious users to inject arbitrary Javascript in the OpenWRT Hostname via the Hostname Change operation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openwrt openwrt 19.07.0 |