CVE

CVE-2018-6355

CVE-2018-6355

/goform/setLang on iBall 300M devices with "iB-WRB302N_1.0.1-Sep 8 2017" firmware has Unauthenticated Stored Cross Site Scripting via the lang parameter.

Source: CVE-2018-6355

Exit mobile version