Cross Site Scripting vulnerability in IRZ Electronics RUH2 GSM router allows attacker to obtain sensitive information via the Upload File parameter.
References
Link | Resource |
---|---|
http://ruh2.com | Product |
http://irz.com | Not Applicable |
https://s4nsec.github.io/2023/02/20/RUH2-GSM-Router-XSS-vulnerabilities.html | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2023-02-27 06:15
Updated : 2023-03-07 08:54
NVD link : CVE-2021-32302
Mitre link : CVE-2021-32302
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
irz
- ruh2_firmware
- ruh2