CVE-2010-2506

  • Last update: Apr 13, 2023

Description

Cross-site scripting (XSS) vulnerability in debug.cgi in Linksys WAP54Gv3 firmware 3.05.03 and 3.04.03 allows remote attackers to inject arbitrary web script or HTML via the data1 parameter.

Software From Fixed in
cisco / linksys_firmware 3.04.03 3.04.03.x
cisco / linksys_firmware 3.05.03 3.05.03.x
cisco / linksys_wap54g - -

Details

    • Severity: Low
  • CVE: CVE-2010-2506
  • Published: Jun 28, 2010
  • Updated: Apr 13, 2023
  • Exploit:

CVSS v2

  • Severity: Low
  • Score: 2.9
  • AV:A/AC:M/Au:N/C:N/I:P/A:N

CWEs

OWASP TOP 10