Edimax BR-6288ACL Cross-Site Scripting Vulnerability in WISP Manual Configuration Function

A cross-site scripting (XSS) vulnerability has been identified in the Edimax BR-6288ACL router, affecting versions through 1.12. The issue arises in the 'wiz_WISP24gmanual' function of the 'wiz_WISP24gmanual.asp' file, where the 'manualssid' argument is not properly sanitized before being output. This flaw allows for the injection of malicious JavaScript, which is then stored in the router's configuration. When the configuration is accessed again, the injected script executes, resulting in stored cross-site scripting. The vulnerability can be exploited remotely and requires user interaction.

Impact

Exploitation of this vulnerability allows for cross-site scripting, where injected scripts are executed in the context of the user accessing the router's configuration.

Reproduction

To reproduce this vulnerability, access the 'wiz_WISP24gmanual.asp' page on an affected Edimax BR-6288ACL router. Inject a script into the 'manualssid' field, which will be saved to the router's configuration. When the configuration is revisited, the injected script will execute, demonstrating the cross-site scripting vulnerability.