Exploit for Fiberhome AN5506-02-B Cross Site Scripting

Name: Exploit for Fiberhome AN5506-02-B Cross Site Scripting
Rating: 5 (234 reviews)

2022-08-11 | CVSS -0.0

## https://sploitus.com/exploit?id=PACKETSTORM:168065
# Exploit Title: FiberHome - AN5506-02-B - RP2521 - Authenticated Stored XSS  
# Date: 10/08/2022  
# Exploit Author: Leonardo Goncalves  
# Version: Firmware RP2521  
  
1) Log in the equipment via your web browser  
2) Go to Network > auth_settings  
3) In the "sncfg_loid" inject the payload "<script>alert()</script>"  
4) Click Save  
5) Exploit!