Havook

**Name of the Vulnerable Software and Affected Versions** D-Link DSL-2740R version EU 01.15 **Description** A cross-site scripting issue exists within the Wireless Setup Section. Remote attackers can execute this by manipulating the `Wireless Network Name` argument. Cross-site scripting is a flaw that allows an attacker to inject malicious scripts into web pages viewed by other users. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** BDCOM P3310D version 0.4.2 10.1.0F Build 86345 **Description** An issue exists in the New RMON Statistics Page component where the manipulation of the `Owner` argument allows for remote cross-site scripting (XSS), a technique where malicious scripts are injected into trusted websites. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** BDCOM P3310D version 0.4.2 10.1.0F Build 86345 **Description** An issue in the New RMON History Page component allows remote exploitation via cross-site scripting (XSS), which is a technique where malicious scripts are injected into trusted websites. The flaw is triggered by the manipulation of the `Owner` argument. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Datacom DM4100 version 1.3.6.1.4.1.3709 **Description** A cross-site scripting issue exists in the Ethernet Configuration Page. A remote attacker can initiate an attack by manipulating the `Name` argument. Cross-site scripting is a flaw that allows an attacker to inject malicious scripts into web pages viewed by other users. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** BDCOM P3310D version 0.4.2 10.1.0F Build 86345 **Description** A security flaw in the New User Page component allows remote attackers to perform cross-site scripting (XSS), which is a technique where malicious scripts are injected into trusted websites. The issue exists within an unknown function of the '/index.asp' endpoint, specifically through the manipulation of the `User name` argument. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions:** Sapido RB-1802 version 1.0.32 **Description:** A cross-site scripting issue exists in the URL Filtering Page component, specifically within the `urlfilter.asp` file. The manipulation of the `URL` address argument can lead to exploitation. The exploit has been publicly disclosed. **Recommendations:** Update to a newer version that contains a fix for this issue. As a temporary workaround, consider disabling the URL Filtering Page functionality until a patch is available.

**Name of the Vulnerable Software and Affected Versions:** D-Link DIR-818LW versions up to 20191215 **Description:** A critical issue exists in D-Link DIR-818LW. The vulnerability is located within the System Time Page component. Manipulation of the `NTP Server` argument can lead to os command injection, allowing for remote attacks. The exploit has been publicly disclosed. This issue only affects products that are no longer supported by the maintainer. **Recommendations:** Versions prior to 20191215: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Intelbras RF 301K version 1.1.5 **Description** A problematic issue has been found in the component Add Static IP, where the manipulation of the `Description` argument leads to cross-site scripting. This issue can be exploited remotely. **Recommendations** For Intelbras RF 301K version 1.1.5, as a temporary workaround, consider restricting the use of the Add Static IP component until a patch is available. Avoid using the `Description` argument in the affected component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Oiwtech OIW-2431APGN-HP version 2.5.3-B20131128 **Description** A critical issue has been discovered, affecting the Personal Script Submenu component, specifically the file /boafrm/formScript. This issue leads to os command injection and can be initiated remotely. The vendor was contacted about the disclosure but did not respond. **Recommendations** For Oiwtech OIW-2431APGN-HP version 2.5.3-B20131128, as a temporary workaround, consider restricting access to the /boafrm/formScript file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Castlenet CBW383G2N up to 20250301 Description: A vulnerability has been found that affects an unknown part of the file /RgSwInfo.asp. The manipulation of the argument `Description` with the input `<img/src/onerror=prompt(8)>` leads to cross-site scripting. It is possible to initiate the attack remotely. Other parameters might be affected as well. Recommendations: For Castlenet CBW383G2N up to 20250301, as a temporary workaround, consider restricting access to the `/RgSwInfo.asp` file until a patch is available. Avoid using the `Description` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Claro A7600-A1 RNR4-A72T-2x16 v2110403 CLA 32 160817 **Description** A problem has been found in the Ping6 Diagnóstico component, specifically in the /form2pingv6.cgi file. The issue affects some unknown functionality of this file. The manipulation of the `ip6addr` argument with specific input, such as `<img/src/onerror=prompt(8)>`, leads to cross-site scripting. This issue can be exploited remotely. The exploit has been made public, and the vendor was contacted about this issue but did not respond. **Recommendations** As a temporary workaround, consider restricting access to the /form2pingv6.cgi file to minimize the risk of exploitation. Avoid using the `ip6addr` argument in the affected component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** FiberHome AN5506-01A ONU GPON RP2511 (affected versions not specified) **Description** The issue concerns a cross-site scripting problem related to the portForwardingCfg pf Description in the Port Forwarding Submenu. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** FiberHome AN5506-01A ONU GPON RP2511 (affected versions not specified) **Description** The issue concerns a cross-site scripting problem in the URL Filtering Submenu, specifically affecting the "/goform/URL filterCfg" endpoint with the `url IP` parameter. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Netis WF2780 version 2.1.41925 **Description** The issue concerns a cross-site scripting (XSS) problem in the 2.4G Menu SSID of the Netis WF2780 wireless device. **Recommendations** For version 2.1.41925, update the firmware to a version that addresses the XSS issue in the 2.4G Menu SSID.

**Name of the Vulnerable Software and Affected Versions** Postman versions up to 11.20 **Description** A problematic issue has been found in Postman on Windows, affecting an unknown part of the library file profapi.dll. The manipulation leads to an untrusted search path. The attack must be approached locally and has a rather high complexity, with difficult exploitability. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Postman versions up to 11.20, as a temporary workaround, consider restricting access to the library file profapi.dll to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Discord versions up to 1.0.9177 **Description** A problem has been found in Discord that affects some unknown functionality in the profapi.dll library, leading to an untrusted search path. The attack must be approached locally and has a rather high complexity, with difficult exploitation. The issue may allow an attacker to impact the confidentiality, integrity, and availability of protected information. **Recommendations** For versions up to 1.0.9177, as a temporary workaround, consider restricting access to the profapi.dll library until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Epic Games Launcher versions up to 17.2.1 **Description** A vulnerability was found in the Epic Games Launcher, affecting the library profapi.dll of the component Installer. The issue leads to an untrusted search path. Local attack is required, and the complexity of the attack is rather high, making exploitation difficult. **Recommendations** For Epic Games Launcher versions up to 17.2.1, update to a version later than 17.2.1 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libretro RetroArch versions up to 1.19.1 **Description** A problematic issue has been found in the library profapi.dll of the component Startup, leading to an untrusted search path. The manipulation requires a local attack approach. The vendor was contacted about this disclosure but did not respond. **Recommendations** For versions up to 1.19.1, as a temporary workaround, consider restricting access to the `profapi.dll` library to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** code-projects Online Bike Rental version 1.0 **Description** A problematic vulnerability has been found in the code-projects Online Bike Rental. The issue affects an unknown function of the file /vehical-details.php of the component HTTP GET Request Handler, leading to cross site scripting. The attack can be launched remotely. **Recommendations** For code-projects Online Bike Rental version 1.0, consider disabling the HTTP GET Request Handler functionality in the /vehical-details.php file until a patch is available. Restrict access to the /vehical-details.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trimble SPS851 version 488.01 **Description** A problematic issue was found in the Ethernet Configuration Menu component of the affected software. The manipulation of the `Hostname` argument leads to cross-site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. **Recommendations** For Trimble SPS851 version 488.01, as a temporary workaround, consider restricting access to the Ethernet Configuration Menu until a patch is available. Avoid manipulating the `Hostname` argument in the affected component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.