First published: Fri May 13 2022(Updated: )
WAVLINK WN535 G3 was discovered to contain a cross-site scripting (XSS) vulnerability via the hostname parameter at /cgi-bin/login.cgi.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Wavlink Wn535g3 Firmware | ||
Wavlink WN535G3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-30489 refers to a cross-site scripting (XSS) vulnerability in WAVLINK WN535 G3.
The vulnerability occurs when the hostname parameter is exploited in the /cgi-bin/login.cgi script of WAVLINK WN535 G3.
CVE-2022-30489 has a severity rating of medium.
The affected software is the Wavlink Wn535g3 Firmware and the Wavlink WN535G3.
To fix CVE-2022-30489, it is recommended to update to the latest firmware version provided by WAVLINK.