• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

dl4343_firmware

CVE-2019-20070

February 26, 2023 by

On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi (aka the Keyword field of the URL Blocking Configuration).

CVE-2019-20071

February 26, 2023 by

On Netis DL4323 devices, CSRF exists via form2logaction.cgi to delete all logs.

CVE-2019-20072

February 26, 2023 by

On Netis DL4323 devices, XSS exists via the form2Ddns.cgi hostname parameter (Dynamic DNS Configuration).

CVE-2019-20073

February 26, 2023 by

On Netis DL4323 devices, XSS exists via the form2userconfig.cgi username parameter (User Account Configuration).

CVE-2019-20074

February 26, 2023 by

On Netis DL4323 devices, any user role can view sensitive information, such as a user password or the FTP password, via the form2saveConf.cgi page.

CVE-2019-20075

February 26, 2023 by

On Netis DL4323 devices, pingrtt_v6.html has XSS (Ping6 Diagnostic).

  • Go to page 1
  • Go to page 2
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE