CVE-2007-5027 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in cgi-bin/ddns in the web management panel for the WBR3404TX broadband router with firmware R1.94p0vTIG allow remote attackers to inject arbitrary web script or HTML via the (1) DD or (2) DU parameter.

Reference

http://osvdb.org/38886 http://securityreason.com/securityalert/3159 http://www.securityfocus.com/archive/1/479994/100/0/threaded http://www.securityfocus.com/bid/25738 https://exchange.xforce.ibmcloud.com/vulnerabilities/36696