CVE-2013-2684

CVE Database · CVE-2013-2684

CVE-2013-2684

· MEDIUMModified

CVSS v3.1

6.1

EPSS

3.62%

Published

Feb 6, 2020

Modified

Nov 20, 2024

Public PoC / Exploit (2)

All weaponized →

Exploit-DBCisco Linksys E4200 - Multiple Vulnerabilities TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cross-site Scripting (XSS) in Cisco Linksys E4200 1.0.05 Build 7 devices allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Weaknesses (CWE)

CWE-79

Affected Products (2)

cisco · linksys_e4200_firmwarevulnerable

cisco · linksys_e4200

References (6)

http://packetstormsecurity.com/files/121551/Cisco-Linksys-E4200-Cross-Site-Scripting-Local-File-Inclusion.html

ExploitThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/59716

Third Party AdvisoryVDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/84070

Third Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/121551/Cisco-Linksys-E4200-Cross-Site-Scripting-Local-File-Inclusion.html

ExploitThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/59716

KEV Catalog EPSS Scores Vendors All CVEs