Vulnerabilities > Wavlink > Wn530Hg4 Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-07 | CVE-2020-10973 | Missing Authentication for Critical Function vulnerability in Wavlink products An issue was discovered in Wavlink WN530HG4, Wavlink WN531G3, Wavlink WN533A8, and Wavlink WN551K1 affecting /cgi-bin/ExportAllSettings.sh where a crafted POST request returns the current configuration of the device, including the administrator password. | 5.0 |
| 2020-05-07 | CVE-2020-10972 | Insufficiently Protected Credentials vulnerability in Wavlink products An issue was discovered where a page is exposed that has the current administrator password in cleartext in the source code of the page. | 5.0 |