.. / CVE-2022-34048

Exploit for Wavlink WN-533A8 - Cross-Site Scripting (CVE-2022-34048)

Description:

Wavlink WN-533A8 M33A8.V5030.190716 contains a reflected cross-site scripting vulnerability via the login_page parameter.

Nuclei Template

View the template here CVE-2022-34048.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-34048.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2022-34048
https://github.com/ARPSyndicate/cvemon
https://www.exploit-db.com/exploits/50989
https://drive.google.com/file/d/1NI3-k3AGIsSe2zjeigl1GVyU1VpG1SV3/view?usp=sharing
https://drive.google.com/file/d/1xznFhH3w3TDN2RCdX62_ebylR4yaKmzf/view?usp=sharing