CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 1CVE-2018-5967
https://notcve.org/view.php?id=CVE-2018-5967
25 Jan 2018 — Netis WF2419 V2.2.36123 devices allow XSS via the Description parameter on the Bandwidth Control Rule Settings page. Los dispositivos Netis WF2419 V2.2.36123 permiten Cross-Site Scripting (XSS) mediante el parámetro Description en la página Bandwidth Control Rule Settings. • https://packetstormsecurity.com/files/145513/Netis-WF2419-HTML-Injection.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 2CVE-2018-6190 – Netis WF2419 Router - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2018-6190
24 Jan 2018 — Netis WF2419 V3.2.41381 devices allow XSS via the Description field on the MAC Filtering page. Los dispositivos Netis WF2419 V3.2.41381 permiten XSS mediante el campo Description en la página MAC Filtering. • https://www.exploit-db.com/exploits/43981 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •