Vulnerabilities > Zyxel > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-07-26 | CVE-2021-35030 | Cross-site Scripting vulnerability in Zyxel products A vulnerability was found in the CGI program in Zyxel GS1900-8 firmware version V2.60, that did not properly sterilize packet contents and could allow an authenticated, local user to perform a cross-site scripting (XSS) attack via a crafted LLDP packet. | 2.3 |
2020-03-31 | CVE-2019-13495 | Cross-site Scripting vulnerability in Zyxel Xgs2210-52Hp Firmware 4.50 In firmware version 4.50 of Zyxel XGS2210-52HP, multiple stored cross-site scripting (XSS) issues allows remote authenticated users to inject arbitrary web script via an rpSys.html Name or Location field. | 3.5 |
2019-04-09 | CVE-2019-10634 | Cross-site Scripting vulnerability in Zyxel Nas326 Firmware An XSS vulnerability in the Zyxel NAS 326 version 5.21 and below allows a remote authenticated attacker to inject arbitrary JavaScript or HTML via the user, group, and file-share description fields. | 3.5 |