1 results (0.006 seconds)

CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0

There is a Cross-site scripting (XSS)  vulnerability in ZTE MF258. Due to insufficient input validation of SMS interface parameter, an XSS attack will be triggered. Hay una vulnerabilidad de Cross-Site Scripting (XSS) en ZTE MF258. Debido a una validación de entrada insuficiente del parámetro de la interfaz SMS, se desencadenará un ataque XSS. • https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1034684 • CWE-20: Improper Input Validation CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •