CVE-2023-23313: XSS
First published: Fri Mar 03 2023(Updated: )
Certain Draytek products are vulnerable to Cross Site Scripting (XSS) via the wlogin.cgi script and user_login.cgi script of the router's web application management portal. This affects Vigor3910, Vigor1000B, Vigor2962 v4.3.2.1; Vigor2865 and Vigor2866 v4.4.1.0; Vigor2927 v4.4.2.2; and Vigor2915, Vigor2765, Vigor2766, Vigor2135 v4.4.2.0; Vigor2763 v4.4.2.1; Vigor2862 and Vigor2926 v3.9.9.0; Vigor2925 v3.9.3; Vigor2952 and Vigor3220 v3.9.7.3; Vigor2133 and Vigor2762 v3.9.6.4; and Vigor2832 v3.9.6.2.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Draytek Vigor2860 Firmware | <3.9.4 | |
| Draytek Vigor2860 | ||
| Draytek Vigor2860n Firmware | <3.9.4 | |
| Draytek Vigor2860n | ||
| Draytek Vigor2860n-plus Firmware | <3.9.4 | |
| Draytek Vigor2860n-plus | ||
| Draytek Vigor2860vn-plus Firmware | <3.9.4 | |
| Draytek Vigor2860vn-plus | ||
| Draytek Vigor2860ac Firmware | <3.9.4 | |
| Draytek Vigor2860ac | ||
| Draytek Vigor2860vac Firmware | <3.9.4 | |
| Draytek Vigor2860vac | ||
| Draytek Vigor2860l Firmware | <3.9.4 | |
| Draytek Vigor2860l | ||
| Draytek Vigor2860ln Firmware | <3.9.4 | |
| Draytek Vigor2860ln | ||
| Draytek Vigor2832 Firmware | <3.9.6.3 | |
| Draytek Vigor2832 | ||
| Draytek Vigor2832n Firmware | <3.9.6.3 | |
| Draytek Vigor2832n | ||
| Draytek Vigor2766 Firmware | <4.4.2.1 | |
| Draytek Vigor2766 | ||
| Draytek Vigor2766ax Firmware | <4.4.2.1 | |
| Draytek Vigor2766ax | ||
| Draytek Vigor2766ac Firmware | <4.4.2.1 | |
| Draytek Vigor2766ac | ||
| Draytek Vigor2766vac Firmware | <4.4.2.1 | |
| Draytek Vigor2766vac | ||
| Draytek Vigor2765 Firmware | <4.4.2.1 | |
| Draytek Vigor2765 | ||
| Draytek Vigor2765ax Firmware | <4.4.2.1 | |
| Draytek Vigor2765ax | ||
| Draytek Vigor2765ac Firmware | <4.4.2.1 | |
| Draytek Vigor2765ac | ||
| Draytek Vigor2765va Firmware | <4.4.2.1 | |
| Draytek Vigor2765va | ||
| Draytek Vigor2763 Firmware | <4.4.2.2 | |
| Draytek Vigor2763 | ||
| Draytek Vigor2763ac Firmware | <4.4.2.2 | |
| Draytek Vigor2763ac | ||
| Draytek Vigor2762 Firmware | <3.9.6.5 | |
| Draytek Vigor2762 | ||
| Draytek Vigor2762n Firmware | <3.9.6.5 | |
| Draytek Vigor2762n | ||
| Draytek Vigor2762ac Firmware | <3.9.6.5 | |
| Draytek Vigor2762ac | ||
| Draytek Vigor2762vac Firmware | <3.9.6.5 | |
| Draytek Vigor2762vac | ||
| Draytek Vigor2135 Firmware | <4.4.2.1 | |
| Draytek Vigor2135 | ||
| Draytek Vigor2135ax Firmware | <4.4.2.1 | |
| Draytek Vigor2135ax | ||
| Draytek Vigor2135ac Firmware | <4.4.2.1 | |
| Draytek Vigor2135ac | ||
| Draytek Vigor2135vac Firmware | <4.4.2.1 | |
| Draytek Vigor2135vac | ||
| Draytek Vigor2135fvac Firmware | <4.4.2.1 | |
| Draytek Vigor2135fvac | ||
| Draytek Vigor2133 Firmware | <3.9.6.5 | |
| Draytek Vigor2133 | ||
| Draytek Vigor2133n Firmware | <3.9.6.5 | |
| Draytek Vigor2133n | ||
| Draytek Vigor2133ac Firmware | <3.9.6.5 | |
| Draytek Vigor2133ac | ||
| Draytek Vigor2133vac Firmware | <3.9.6.5 | |
| Draytek Vigor2133vac | ||
| Draytek Vigor2133fvac Firmware | <3.9.6.5 | |
| Draytek Vigor2133fvac | ||
| Draytek Vigor166 Firmware | <4.2.4.1 | |
| Draytek Vigor166 | ||
| Draytek Vigor165 Firmware | <4.2.4.1 | |
| Draytek Vigor165 | ||
| Draytek Vigor130 Firmware | <3.8.5.1 | |
| Draytek Vigor130 | ||
| Draytek Vigornic 132 Firmware | <3.8.5.1 | |
| Draytek Vigornic 132 | ||
| Draytek Virgor3910 Firmware | <4.3.2.2 | |
| Draytek Virgor3910 | ||
| Draytek Virgor3220 Firmware | <3.9.7.4 | |
| Draytek Virgor3220 | ||
| Draytek Virgor2962 Firmware | <4.3.2.2 | |
| Draytek Virgor2962 | ||
| Draytek Virgor2962p Firmware | <4.3.2.2 | |
| Draytek Virgor2962p | ||
| Draytek Virgor1000b Firmware | <4.3.2.2 | |
| Draytek Virgor1000b | ||
| Draytek Virgor2952 Firmware | <3.9.7.4 | |
| Draytek Virgor2952 | ||
| Draytek Virgor2952p Firmware | <3.9.7.4 | |
| Draytek Virgor2952p | ||
| Draytek Virgor2927 Firmware | <4.4.2.3 | |
| Draytek Virgor2927 | ||
| Draytek Virgor2927ax Firmware | <4.4.2.3 | |
| Draytek Virgor2927ax | ||
| Draytek Virgor2927ac Firmware | <4.4.2.3 | |
| Draytek Virgor2927ac | ||
| Draytek Virgor2927vac Firmware | <4.4.2.3 | |
| Draytek Virgor2927vac | ||
| Draytek Virgor2927f Firmware | <4.4.2.3 | |
| Draytek Virgor2927f | ||
| Draytek Virgor2927l Firmware | <4.4.2.3 | |
| Draytek Virgor2927l | ||
| Draytek Virgor2927lac Firmware | <4.4.2.3 | |
| Draytek Virgor2927lac | ||
| Draytek Virgor2926 Firmware | <3.9.9.1 | |
| Draytek Virgor2926 | ||
| Draytek Virgor2926n Firmware | <3.9.9.1 | |
| Draytek Virgor2926n | ||
| Draytek Virgor2926ac Firmware | <3.9.9.1 | |
| Draytek Virgor2926ac | ||
| Draytek Virgor2926vac Firmware | <3.9.9.1 | |
| Draytek Virgor2926vac | ||
| Draytek Virgor2926l Firmware | <3.9.9.1 | |
| Draytek Virgor2926l | ||
| Draytek Virgor2926ln Firmware | <3.9.9.1 | |
| Draytek Virgor2926ln | ||
| Draytek Virgor2926lac Firmware | <3.9.9.1 | |
| Draytek Virgor2926lac | ||
| Draytek Virgor2925 Firmware | <3.9.4 | |
| Draytek Virgor2925 | ||
| Draytek Virgor2925n Firmware | <3.9.4 | |
| Draytek Virgor2925n | ||
| Draytek Virgor2925n-plus Firmware | <3.9.4 | |
| Draytek Virgor2925n-plus | ||
| Draytek Virgor2925vn-plus Firmware | <3.9.4 | |
| Draytek Virgor2925vn-plus | ||
| Draytek Virgor2925ac Firmware | <3.9.4 | |
| Draytek Virgor2925ac | ||
| Draytek Virgor2925vac Firmware | <3.9.4 | |
| Draytek Virgor2925vac | ||
| Draytek Virgor2925fn Firmware | <3.9.4 | |
| Draytek Virgor2925fn | ||
| Draytek Virgor2925l Firmware | <3.9.4 | |
| Draytek Virgor2925l | ||
| Draytek Virgor2925ln Firmware | <3.9.4 | |
| Draytek Virgor2925ln | ||
| Draytek Virgor2915 Firmware | <4.4.2.1 | |
| Draytek Virgor2915 | ||
| Draytek Virgor2915ac Firmware | <4.4.2.1 | |
| Draytek Virgor2915ac | ||
| Draytek Virgor2866 Firmware | <4.4.1.1 | |
| Draytek Virgor2866 | ||
| Draytek Virgor2866ax Firmware | <4.4.1.1 | |
| Draytek Virgor2866ax | ||
| Draytek Virgor2866ac Firmware | <4.4.1.1 | |
| Draytek Virgor2866ac | ||
| Draytek Virgor2866vac Firmware | <4.4.1.1 | |
| Draytek Virgor2866vac | ||
| Draytek Virgor2866l Firmware | <4.4.1.1 | |
| Draytek Virgor2866l | ||
| Draytek Virgor2866lac Firmware | <4.4.1.1 | |
| Draytek Virgor2866lac | ||
| Draytek Virgor2865 Firmware | <4.4.1.1 | |
| Draytek Virgor2865 | ||
| Draytek Virgor2865ax Firmware | <4.4.1.1 | |
| Draytek Virgor2865ax | ||
| Draytek Virgor2865ac Firmware | <4.4.1.1 | |
| Draytek Virgor2865ac | ||
| Draytek Virgor2865vac Firmware | <4.4.1.1 | |
| Draytek Virgor2865vac | ||
| Draytek Virgor2865l Firmware | <4.4.1.1 | |
| Draytek Virgor2865l | ||
| Draytek Virgor2865lac Firmware | <4.4.1.1 | |
| Draytek Virgor2865lac | ||
| Draytek Virgor2862 Firmware | <3.9.9.1 | |
| Draytek Virgor2862 | ||
| Draytek Virgor2862n Firmware | <3.9.9.1 | |
| Draytek Virgor2862n | ||
| Draytek Virgor2862ac Firmware | <3.9.9.1 | |
| Draytek Virgor2862ac | ||
| Draytek Virgor2862vac Firmware | <3.9.9.1 | |
| Draytek Virgor2862vac | ||
| Draytek Virgor2862b Firmware | <3.9.9.1 | |
| Draytek Virgor2862b | ||
| Draytek Virgor2862bn Firmware | <3.9.9.1 | |
| Draytek Virgor2862bn | ||
| Draytek Virgor2862l Firmware | <3.9.9.1 | |
| Draytek Virgor2862l | ||
| Draytek Virgor2862ln Firmware | <3.9.9.1 | |
| Draytek Virgor2862ln | ||
| Draytek Virgor2862lac Firmware | <3.9.9.1 | |
| Draytek Virgor2862lac |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.draytek.com/about/security-advisory/cross-site-scripting-vulnerability-(cve-2023-23313)/
- https://www.horizonconsulting.com/advisories23-Multiple-XSS-Stored-in-DrayTek-routers-CVE-2023-23313
- https://www.draytek.com/about/security-advisory/cross-site-scripting-vulnerability-%28cve-2023-23313%29/
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/draytek
- canonical/draytek vigor2860 firmware
- canonical/draytek vigor2860
- canonical/draytek vigor2860n firmware
- canonical/draytek vigor2860n
- canonical/draytek vigor2860n-plus firmware
- canonical/draytek vigor2860n-plus
- canonical/draytek vigor2860vn-plus firmware
- canonical/draytek vigor2860vn-plus
- canonical/draytek vigor2860ac firmware
- canonical/draytek vigor2860ac
- canonical/draytek vigor2860vac firmware
- canonical/draytek vigor2860vac
- canonical/draytek vigor2860l firmware
- canonical/draytek vigor2860l
- canonical/draytek vigor2860ln firmware
- canonical/draytek vigor2860ln
- canonical/draytek vigor2832 firmware
- canonical/draytek vigor2832
- canonical/draytek vigor2832n firmware
- canonical/draytek vigor2832n
- canonical/draytek vigor2766 firmware
- canonical/draytek vigor2766
- canonical/draytek vigor2766ax firmware
- canonical/draytek vigor2766ax
- canonical/draytek vigor2766ac firmware
- canonical/draytek vigor2766ac
- canonical/draytek vigor2766vac firmware
- canonical/draytek vigor2766vac
- canonical/draytek vigor2765 firmware
- canonical/draytek vigor2765
- canonical/draytek vigor2765ax firmware
- canonical/draytek vigor2765ax
- canonical/draytek vigor2765ac firmware
- canonical/draytek vigor2765ac
- canonical/draytek vigor2765va firmware
- canonical/draytek vigor2765va
- canonical/draytek vigor2763 firmware
- canonical/draytek vigor2763
- canonical/draytek vigor2763ac firmware
- canonical/draytek vigor2763ac
- canonical/draytek vigor2762 firmware
- canonical/draytek vigor2762
- canonical/draytek vigor2762n firmware
- canonical/draytek vigor2762n
- canonical/draytek vigor2762ac firmware
- canonical/draytek vigor2762ac
- canonical/draytek vigor2762vac firmware
- canonical/draytek vigor2762vac
- canonical/draytek vigor2135 firmware
- canonical/draytek vigor2135
- canonical/draytek vigor2135ax firmware
- canonical/draytek vigor2135ax
- canonical/draytek vigor2135ac firmware
- canonical/draytek vigor2135ac
- canonical/draytek vigor2135vac firmware
- canonical/draytek vigor2135vac
- canonical/draytek vigor2135fvac firmware
- canonical/draytek vigor2135fvac
- canonical/draytek vigor2133 firmware
- canonical/draytek vigor2133
- canonical/draytek vigor2133n firmware
- canonical/draytek vigor2133n
- canonical/draytek vigor2133ac firmware
- canonical/draytek vigor2133ac
- canonical/draytek vigor2133vac firmware
- canonical/draytek vigor2133vac
- canonical/draytek vigor2133fvac firmware
- canonical/draytek vigor2133fvac
- canonical/draytek vigor166 firmware
- canonical/draytek vigor166
- canonical/draytek vigor165 firmware
- canonical/draytek vigor165
- canonical/draytek vigor130 firmware
- canonical/draytek vigor130
- canonical/draytek vigornic 132 firmware
- canonical/draytek vigornic 132
- canonical/draytek virgor3910 firmware
- canonical/draytek virgor3910
- canonical/draytek virgor3220 firmware
- canonical/draytek virgor3220
- canonical/draytek virgor2962 firmware
- canonical/draytek virgor2962
- canonical/draytek virgor2962p firmware
- canonical/draytek virgor2962p
- canonical/draytek virgor1000b firmware
- canonical/draytek virgor1000b
- canonical/draytek virgor2952 firmware
- canonical/draytek virgor2952
- canonical/draytek virgor2952p firmware
- canonical/draytek virgor2952p
- canonical/draytek virgor2927 firmware
- canonical/draytek virgor2927
- canonical/draytek virgor2927ax firmware
- canonical/draytek virgor2927ax
- canonical/draytek virgor2927ac firmware
- canonical/draytek virgor2927ac
- canonical/draytek virgor2927vac firmware
- canonical/draytek virgor2927vac
- canonical/draytek virgor2927f firmware
- canonical/draytek virgor2927f
- canonical/draytek virgor2927l firmware
- canonical/draytek virgor2927l
- canonical/draytek virgor2927lac firmware
- canonical/draytek virgor2927lac
- canonical/draytek virgor2926 firmware
- canonical/draytek virgor2926
- canonical/draytek virgor2926n firmware
- canonical/draytek virgor2926n
- canonical/draytek virgor2926ac firmware
- canonical/draytek virgor2926ac
- canonical/draytek virgor2926vac firmware
- canonical/draytek virgor2926vac
- canonical/draytek virgor2926l firmware
- canonical/draytek virgor2926l
- canonical/draytek virgor2926ln firmware
- canonical/draytek virgor2926ln
- canonical/draytek virgor2926lac firmware
- canonical/draytek virgor2926lac
- canonical/draytek virgor2925 firmware
- canonical/draytek virgor2925
- canonical/draytek virgor2925n firmware
- canonical/draytek virgor2925n
- canonical/draytek virgor2925n-plus firmware
- canonical/draytek virgor2925n-plus
- canonical/draytek virgor2925vn-plus firmware
- canonical/draytek virgor2925vn-plus
- canonical/draytek virgor2925ac firmware
- canonical/draytek virgor2925ac
- canonical/draytek virgor2925vac firmware
- canonical/draytek virgor2925vac
- canonical/draytek virgor2925fn firmware
- canonical/draytek virgor2925fn
- canonical/draytek virgor2925l firmware
- canonical/draytek virgor2925l
- canonical/draytek virgor2925ln firmware
- canonical/draytek virgor2925ln
- canonical/draytek virgor2915 firmware
- canonical/draytek virgor2915
- canonical/draytek virgor2915ac firmware
- canonical/draytek virgor2915ac
- canonical/draytek virgor2866 firmware
- canonical/draytek virgor2866
- canonical/draytek virgor2866ax firmware
- canonical/draytek virgor2866ax
- canonical/draytek virgor2866ac firmware
- canonical/draytek virgor2866ac
- canonical/draytek virgor2866vac firmware
- canonical/draytek virgor2866vac
- canonical/draytek virgor2866l firmware
- canonical/draytek virgor2866l
- canonical/draytek virgor2866lac firmware
- canonical/draytek virgor2866lac
- canonical/draytek virgor2865 firmware
- canonical/draytek virgor2865
- canonical/draytek virgor2865ax firmware
- canonical/draytek virgor2865ax
- canonical/draytek virgor2865ac firmware
- canonical/draytek virgor2865ac
- canonical/draytek virgor2865vac firmware
- canonical/draytek virgor2865vac
- canonical/draytek virgor2865l firmware
- canonical/draytek virgor2865l
- canonical/draytek virgor2865lac firmware
- canonical/draytek virgor2865lac
- canonical/draytek virgor2862 firmware
- canonical/draytek virgor2862
- canonical/draytek virgor2862n firmware
- canonical/draytek virgor2862n
- canonical/draytek virgor2862ac firmware
- canonical/draytek virgor2862ac
- canonical/draytek virgor2862vac firmware
- canonical/draytek virgor2862vac
- canonical/draytek virgor2862b firmware
- canonical/draytek virgor2862b
- canonical/draytek virgor2862bn firmware
- canonical/draytek virgor2862bn
- canonical/draytek virgor2862l firmware
- canonical/draytek virgor2862l
- canonical/draytek virgor2862ln firmware
- canonical/draytek virgor2862ln
- canonical/draytek virgor2862lac firmware
- canonical/draytek virgor2862lac