Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
EnGenius ESR580 A8J-EMR5000 devices allow a remote attacker to conduct stored XSS attacks that could lead to arbitrary JavaScript code execution (under the context of the user's session) via the Wi-Fi SSID input fields. Web scripts embedded into the vulnerable fields this way are executed immediately when a user logs into the admin page. This affects /admin/wifi/wlan1 and /admin/wifi/wlan_guest.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EnGenius ESR580 安全漏洞
Vulnerability Description
EnGenius ESR580是EnGenius公司的一系列无线接入点。 EnGenius ESR580存在安全漏洞,该漏洞源于允许远程攻击者通过Wi-Fi SSID输入字段进行存储型跨站脚本攻击,会导致任意JavaScript代码执行。
CVSS Information
N/A
Vulnerability Type
N/A