CVE-2026-6559 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A weakness has been identified in Wavlink WL-WN579A3 220323. This affects the function sub_401F80 of the file /cgi-bin/login.cgi. This manipulation of the argum…
Medium CVSS: 5.3

CVE-2026-6559

A weakness has been identified in Wavlink WL-WN579A3 220323. This affects the function sub_401F80 of the file /cgi-bin/login.cgi. This manipulation of the argument Hostname causes cross site scripting. Remote exploitation of the attack is possible. Upgrading the affected component is recommended. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.
Vendor
-
Product
-
CWE
CWE-79
Yayın Tarihi
2026-04-19 06:16:10
Güncelleme
2026-04-19 06:16:10
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-79 MEDIUM 2026

Referanslar

https://dl.wavlink.com/firmware/RD/WINSTAR_WN579A3-A-2026-03-10-94f93d4-WO-mt7628-squashfs-sysupgrade.bin https://github.com/Litengzheng/vul_db/blob/main/WL-WN579A3/vul_16/README.md https://vuldb.com/submit/785303 https://vuldb.com/vuln/358196 https://vuldb.com/vuln/358196/cti