Hackintoanetwork

**Name of the Vulnerable Software and Affected Versions** SpaceX Starlink Wi-Fi router Gen 2 versions prior to 2023.48.0 **Description** The issue is related to the lack of protection of the web page structure, allowing a remote attacker to conduct a cross-site scripting (XSS) attack via the `ssid` and `password` parameters on the Setup Page. **Recommendations** For SpaceX Starlink Wi-Fi router Gen 2 versions prior to 2023.48.0, update to version 2023.48.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the Setup Page until a patch is available. Avoid using the parameters `ssid` and `password` in the affected API endpoint until the issue is resolved.