Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:o:actiontec:c1000a_firmware:cac004-31.30l.95:*:*:*:*:*:*:*
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2018-19922 |
Persistent Cross-Site Scripting (XSS) in the advancedsetup_websiteblocking.html Website Blocking page of the Actiontec C1000A router with firmware through CAC004-31.30L.95 allows a remote attacker to inject arbitrary HTML into the Website Blocking page by inserting arbitrary HTML into the 'TodUrlAdd' URL parameter in a /urlfilter.cmd POST request. Published: December 06, 2018; 5:29:04 PM -0500 |
V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |