CVE-2019-20073

MEDIUM WAF: High
CVSS 6.1 Published: 2019-12-30
CWE-79

On Netis DL4323 devices, XSS exists via the form2userconfig.cgi username parameter (User Account Configuration).

WAF Coverage Analysis

Cross-Site Scripting (XSS) High WAF Coverage

OWASP: A03:2021 Injection

941xxx - XSS / XXE

Affected Software

VendorProductVersion
netis-systemsdl4343_firmware-

References

Back to CVE Database