CVE-2019-20073

CVE-2019-20073

EPSS 1.5%

On Netis DL4323 devices, XSS exists via the form2userconfig.cgi username parameter (User Account Configuration).

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://drive.google.com/open?id=1CxLrSKAczEZpm_7FERIrCGGJAs2mp6Go https://drive.google.com/open?id=1puObYuPWktesaVW1SO8uvSr1g4SnAtAw https://fatihhcelik.blogspot.com/2019/12/stored-xss-on-username-input-netisdl4323.html