ZyXel GS1510 Multiple Input Validation Vulnerabilities

ZyXel GS1510 Multiple Input Validation Vulnerabilities

ZyXel GS1510 is prone to multiple input validation vulnerabilities that includes cross-site scripting and information-disclosure vulnerabilities.

An attacker can exploit these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, or disclose sensitive-information. This may let the attacker steal cookie-based authentication credentials.

ZyXel GS1510 running firmware V1.00(BVN.1) is vulnerable; other versions may also be affected.