CVE-2009-0393

Motorola Wimax modem CPEi300 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in sysconf.cgi in Motorola Wimax modem CPEi300 allows remote authenticated users to inject arbitrary web script or HTML via the page parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Usman Saeed · textremotehardware

https://www.exploit-db.com/exploits/7915

View Code ZIP pw:eip

References (3)

[Exploit] http://www.securityfocus.com/bid/33519

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/500545/100/0/threaded

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7915

Scores

EPSS 0.0034

EPSS Percentile 56.4%

Classification

CWE

CWE-79

Status published

Affected Products (2)

motorola/cpei300

n/a/n/a

Timeline

Published Feb 03, 2009

Tracked Since Feb 18, 2026