Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
XSS via orig_url exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. The affected script is guest/preview.cgi.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款Peplink Balance产品跨站脚本漏洞
Vulnerability Description
Peplink Balance 305等都是用于中型企业的多出口负载均衡路由器。 使用fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093之前版本固件的多款Peplink Balance产品中存在跨站脚本漏洞。远程攻击者可借助‘orig_url’参数利用该漏洞注入任意的Web脚本或HTML。以下产品受到影响:Peplink Balance 305;380;580;710;1350;2500。
CVSS Information
N/A
Vulnerability Type
N/A