Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities on the Conceptronic C54APM access point with runtime code 1.26 allow remote attackers to inject arbitrary web script or HTML via (1) the submit-url parameter in a Refresh action to goform/formWlSiteSurvey or (2) the wlan-url parameter to goform/formWlanSetup.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Conceptronic C54APM 跨站脚本漏洞
Vulnerability Description
Conceptronic C54APM是德国Conceptronic公司的一款无线接入器。 使用Runtime Code 1.26版本接入器的Conceptronic C54APM设备中存在跨站脚本漏洞,该漏洞源于goform/formWlSiteSurvey页面没有正确过滤Refresh操作中的‘submit-url’参数和goform/formWlanSetup脚本没有正确过滤‘wlan-url’参数。远程攻击者可利用该漏洞注入任意Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A