CVE-2024-39363 | Wavlink AC3000 M33A8.V5030.210505 login.cgi set_lang_CountryCode cross site scripting (TALOS-2024-2017)

Posted by Angelo Barbosa | Jan 14, 2025 | CVE

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been rated as problematic. Affected by this issue is the function set_lang_CountryCode of the file login.cgi. The manipulation leads to basic cross site scripting.

This vulnerability is handled as CVE-2024-39363. The attack may be launched remotely. There is no exploit available.

CVE-2024-39363 | Wavlink AC3000 M33A8.V5030.210505 login.cgi set_lang_CountryCode cross site scripting (TALOS-2024-2017)

Related Posts

CVE-2024-45658 | IBM Security Verify Access Appliance up to 10.0.8 information exposure

CVE-2024-27349 | Apache HugeGraph-Server up to 1.2.x RESTful-API authentication spoofing

CVE-2024-10532 | wproyal Bard Extra Plugin up to 1.2.7 on WordPress bardxtra_import_xml authorization

CVE-2024-32566 | WP Club Manager Plugin up to 2.2.11 on WordPress cross site scripting