Appsechuntr

**Name of the Vulnerable Software and Affected Versions** Luxul XWR-600 versions prior to 4.0.2 **Description** A cross-site scripting issue exists in the Web Administration Interface component of Luxul XWR-600. The issue is triggered by manipulating the `SSID` argument within the Guest Network/Wireless Profile. This allows for remote attacks. The exploit has been publicly disclosed. **Recommendations** Update Luxul XWR-600 to version 4.0.2 or later.