Headline
CVE-2021-45906: FS#4199 : Storage XSS
OpenWrt 21.02.1 allows XSS via the NAT Rules Name screen.
Status Closed
Percent Complete
Task Type Bug Report
Category Website
Assigned To No-one
Operating System All
Severity Low
Priority Very Low
Reported Version openwrt-21.02
Due in Version Undecided
Due Date Undecided
Private
Hello, excuse me!
XSS seems to exist!
Vulnerability location:
1、Network Firewall Port Forwards Add Name
2、Network Firewall Traffic Rules Name
2、Network Firewall NAT Rules Name
POC: <img src=x onerror=alert(1)>
Closed by Jo-Philipp Wich
23.12.2021 16:14
Reason for closing: Fixed
Loading…