CVE-2020-27980

MEDIUM

Genexis Platinum-4410 Firmware - XSS

Title source: rule

Description

Genexis Platinum-4410 P4410-V2-1.28 devices allow stored XSS in the WLAN SSID parameter. This could allow an attacker to perform malicious actions in which the XSS popup will affect all privileged users.

Exploits (1)

exploitdb WRITEUP

by Amal Mohandas · textwebappshardware

https://www.exploit-db.com/exploits/48948

View Code ZIP pw:eip

References (2)

[Product, Vendor Advisory] https://genexis.eu/product/platinum/

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/48948

Scores

CVSS v3 5.4

EPSS 0.0040

EPSS Percentile 60.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (1)

genexis/platinum-4410_firmware 1.28

Published Oct 28, 2020

Tracked Since Feb 18, 2026