CVE-2019-20076

CVE-2019-20076

EPSS 1.4%

On Netis DL4323 devices, XSS exists via the form2Ddns.cgi username parameter (DynDns settings of the Dynamic DNS Configuration).

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://drive.google.com/open?id=1HrYqVKlSxhQqB5tNhhLIgpyfi0Y2ZL80 https://drive.google.com/open?id=1i5gIrJRy5L7lTIsYZp9GsvR8ZGCWtnMj https://fatihhcelik.blogspot.com/2019/12/stored-xss-on-username-input-2-netis.html