CVE-2013-3065

Name of the Vulnerable Software and Affected Versions Linksys EA6500 version 1.1.28.147876

Description A cross-site scripting (XSS) issue exists in the Parental Controls section, specifically in the Blocked Specific Sites section, allowing remote authenticated users to inject arbitrary web script or HTML. This could potentially lead to unauthorized actions on the affected device.

Recommendations For Linksys EA6500 version 1.1.28.147876, consider disabling access to the Parental Controls section until a fix is available, and avoid using the Blocked Specific Sites feature to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.