CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 1CVE-2021-43728
https://notcve.org/view.php?id=CVE-2021-43728
20 May 2022 — Pix-Link MiNi Router 28K.MiniRouter.20190211 was discovered to contain a stored cross-site scripting (XSS) vulnerability due to an unsanitized SSID parameter. Se ha detectado que Pix-Link MiNi Router versión 28K.MiniRouter.20190211, contiene una vulnerabilidad de tipo cross-site scripting (XSS) almacenada debido a un parámetro SSID no saneado • http://www.pix-link.com/page50?product_id=144 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 1CVE-2021-43729
https://notcve.org/view.php?id=CVE-2021-43729
20 May 2022 — Pix-Link MiNi Router 28K.MiniRouter.20190211 was discovered to contain a stored cross-site scripting (XSS) vulnerability due to an unsanitized Security Key parameter. Se ha detectado que Pix-Link MiNi Router versión 28K.MiniRouter.20190211, contiene una vulnerabilidad de tipo cross-site scripting (XSS) almacenado debido a un parámetro de clave de seguridad no saneado • http://www.pix-link.com/page50?product_id=144 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2019-11877
https://notcve.org/view.php?id=CVE-2019-11877
10 Jun 2019 — XSS on the PIX-Link Repeater/Router LV-WR09 with firmware v28K.MiniRouter.20180616 allows attackers to steal credentials without being connected to the network. The attack vector is a crafted ESSID. El XSS en el PIX-Link Repeater/Router LV-WR09 con firmware v28K.MiniRouter.2,0180616 permite que los atacantes puedan robar credenciales sin estar conectados a la red. El vector de ataque es un ESSID elaborado. • http://www.pix-link.com/page50?product_id=144 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •