Afaq1337

**Name of the Vulnerable Software and Affected Versions** FiberHome VDSL2 Modem HG150-Ub version V3.0 **Description** The issue concerns the submission of admin credentials in URLs, which can be logged or sniffed. This poses a risk as sensitive information can be captured and exploited. **Recommendations** For FiberHome VDSL2 Modem HG150-Ub version V3.0, consider restricting access to the admin interface until a fix is available, and avoid using the modem for sensitive operations. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** FiberHome VDSL2 Modem HG150-Ub version V3.0 **Description** A stored cross-site scripting (XSS) issue exists in the Parental Control --> Access Time Restriction --> `Username` field. This allows an attacker to inject malicious scripts, which can lead to the inability to delete rules due to the XSS. **Recommendations** For FiberHome VDSL2 Modem HG150-Ub version V3.0, as a temporary workaround, consider restricting access to the Parental Control --> Access Time Restriction --> `Username` field until a patch is available. Avoid using the `Username` field in the affected area until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.