Vulnerabilities > Actiontec > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-11-13 CVE-2013-3097 Cross-site Scripting vulnerability in Actiontec Mi424Wr-Gen3I Firmware
Unspecified Cross-site scripting (XSS) vulnerability in the Verizon FIOS Actiontec MI424WR-GEN3I router.
network
actiontec CWE-79
4.3
2018-12-06 CVE-2018-19922 Cross-site Scripting vulnerability in Actiontec C1000A Firmware
Persistent Cross-Site Scripting (XSS) in the advancedsetup_websiteblocking.html Website Blocking page of the Actiontec C1000A router with firmware through CAC004-31.30L.95 allows a remote attacker to inject arbitrary HTML into the Website Blocking page by inserting arbitrary HTML into the 'TodUrlAdd' URL parameter in a /urlfilter.cmd POST request.
network
actiontec CWE-79
4.3
2018-05-14 CVE-2018-10252 Session Fixation vulnerability in Actiontec Wcb6200Q Firmware
An issue was discovered on Actiontec WCB6200Q before 1.1.10.20a devices.
network
actiontec CWE-384
6.8
2015-08-23 CVE-2015-2905 Cross-Site Request Forgery (CSRF) vulnerability in Actiontec Ncs01 Firmware
Cross-site request forgery (CSRF) vulnerability on Actiontec GT784WN modems with firmware before NCS01-1.0.13 allows remote attackers to hijack the authentication or intranet connectivity of arbitrary users.
network
actiontec CWE-352
6.8