Ida Heggen Trosdahl - Security Researcher - Exploit Intelligence Platform

CVE-2023-29772 WRITEUP MEDIUM WRITEUP

ASUS RT-AC51U Firmware <= 3.0.0.4.380.8591 - Cross-Site Scripting in System Log Page

A Cross-site scripting (XSS) vulnerability in the System Log/General Log page of the administrator web UI in ASUS RT-AC51U wireless router firmware version up to and including 3.0.0.4.380.8591 allows remote attackers to inject arbitrary web script or HTML via a malicious network request.

CVSS 5.2

View Code

CVE-2023-31889 WRITEUP MEDIUM WRITEUP

ASUS RT-AC51U <3.0.0.4.380.8591 - DoS

An issue discovered in httpd in ASUS RT-AC51U with firmware version up to and including 3.0.0.4.380.8591 allows local attackers to cause a denial of service via crafted GET request.

CVSS 5.5

View Code

CVE-2023-33548 WRITEUP MEDIUM WRITEUP

ASUS RT-AC51U <3.0.0.4.380.8591 - XSS

Cross Site Scripting (XSS) vulnerability in ASUS RT-AC51U with firmware versions up to and including 3.0.0.4.380.8591 allows attackers to run arbitrary code via the WPA Pre-Shared Key field.

CVSS 6.8

View Code