CVE-2013-2270 – Airvana HubBub C1-600-RT Cross Site Scripting

https://notcve.org/view.php?id=CVE-2013-2270

28 Feb 2013 — Cross-site scripting (XSS) vulnerability in the administration page in Airvana HubBub C1-600-RT and Sprint AIRAVE 2.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de XSS en la página de administración en Airvana HubBub C1-600-RT y Sprint AIRAVE 2.5 permite a atacantes remotos inyectar script Web o HTML arbitrarios a través de vectores no especificados. The Airvana Airrave router version 2.5 suffers from a stored cross site scripting vulnerability. • http://archives.neohapsis.com/archives/bugtraq/2013-02/0155.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •