CVE-2022-34048

Name of the Vulnerable Software and Affected Versions Wavlink WN533A8 version M33A8.V5030.190716

Description A reflected cross-site scripting (XSS) issue was found, which can be exploited via the login page parameter. This allows an attacker to inject malicious scripts into the website, potentially leading to unauthorized actions.

Recommendations For version M33A8.V5030.190716, as a temporary workaround, consider restricting access to the login page parameter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.