CVE-2021-20128
CVE-2021-20128
The Profile Name field in the floor plan (Network Menu) page in Draytek VigorConnect 1.6.0-B3 was found to be vulnerable to stored XSS, as user input is not properly sanitized.
Affected products
n/a · Draytek VigorConnectWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →