CVE-2025-50740

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

AutoConnect 1.4.2, an Arduino library, is vulnerable to a cross site scripting (xss) vulnerability. The AutoConnect web interface /_ac/config allows HTML/JS code to be executed via a crafted network SSID.

AbhijithAJ/AutoConnect_IoT_Lib_vulnerability
AbhijithAJ/AutoConnect_IoT_Lib_vulnerability
Hieromon AutoConnect popular IoT wi-fi soft AP provisoning Library is vulnerable to XSS code injection via Wi-Fi Name.
GitHubGitHub
Hieromon/AutoConnect
Hieromon/AutoConnect
An Arduino library for ESP8266/ESP32 WLAN configuration at runtime with the Web interface
GitHubGitHub
991