Description
A vulnerability has been found in Edimax BR-6288ACL up to 1.12. Impacted is the function wiz_WISP24gmanual of the file wiz_WISP24gmanual.asp. Such manipulation of the argument manualssid leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor confirms that the affected product is end-of-life. They confirm that they "will issue a consolidated Security Advisory on our official support website." This vulnerability only affects products that are no longer supported by the maintainer.
Published: 2026-02-06
Score: 4.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Cross‑Site Scripting
Action: Assess Impact
AI Analysis

Impact

A remote, unauthenticated cross‑site scripting vulnerability exists in the Edimax BR‑6288ACL router firmware up to version 1.12. By supplying a crafted value in the manualssid parameter of the wiz_WISP24gmanual.asp page, an attacker can inject arbitrary JavaScript that executes in the browser of anyone who views the resulting page. This flaw, classified as CWE‑79 and discussed in relation to CWE‑94, can lead to session hijacking, redirection, or the exfiltration of credentials stored in the device’s web interface.

Affected Systems

This issue affects Edimax BR‑6288ACL routers, firmware releases up to 1.12, which are no longer supported by the vendor. No other models or firmware versions are reported to be vulnerable.

Risk and Exploitability

The CVSS base score is 4.8, indicating moderate impact, while the low EPSS score of less than 1% suggests a very small exploitation likelihood. The vulnerability is not listed in the CISA KEV catalog. An attacker can exploit the flaw by crafting a URL containing malicious JavaScript and delivering it to a user with access to the router’s web interface, which will render the script with the privileges of that user. No authentication or elevated privileges are required to trigger the vulnerability.

Generated by OpenCVE AI on April 17, 2026 at 22:57 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Deploy a firmware update once the vendor releases a patch that sanitizes or removes the vulnerable manualssid parameter handling.
  • If an update is unavailable, isolate the router from public networks or block remote access to the /wiz_WISP24gmanual.asp endpoint via firewall rules or reverse‑proxy filtering.
  • Implement a web application firewall or content‑security‑policy headers to detect and block reflected XSS attempting to exploit the router’s administrative interface.

Generated by OpenCVE AI on April 17, 2026 at 22:57 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 23 Feb 2026 10:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 20 Feb 2026 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Edimax br-6288acl Firmware
CPEs cpe:2.3:h:edimax:br-6288acl:-:*:*:*:*:*:*:*
cpe:2.3:o:edimax:br-6288acl_firmware:*:*:*:*:*:*:*:*
Vendors & Products Edimax br-6288acl Firmware

Fri, 06 Feb 2026 12:15:00 +0000

Type Values Removed Values Added
First Time appeared Edimax
Edimax br-6288acl
Vendors & Products Edimax
Edimax br-6288acl

Fri, 06 Feb 2026 00:30:00 +0000

Type Values Removed Values Added
Description A vulnerability has been found in Edimax BR-6288ACL up to 1.12. Impacted is the function wiz_WISP24gmanual of the file wiz_WISP24gmanual.asp. Such manipulation of the argument manualssid leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor confirms that the affected product is end-of-life. They confirm that they "will issue a consolidated Security Advisory on our official support website." This vulnerability only affects products that are no longer supported by the maintainer.
Title Edimax BR-6288ACL wiz_WISP24gmanual.asp wiz_WISP24gmanual cross site scripting
Weaknesses CWE-79
CWE-94
References
Metrics cvssV2_0

{'score': 3.3, 'vector': 'AV:N/AC:L/Au:M/C:N/I:P/A:N/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 2.4, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 2.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 4.8, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Edimax Br-6288acl Br-6288acl Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-02-23T09:19:16.795Z

Reserved: 2026-02-05T13:19:52.077Z

Link: CVE-2026-1971

cve-icon Vulnrichment

Updated: 2026-02-06T19:30:47.210Z

cve-icon NVD

Status : Analyzed

Published: 2026-02-06T01:15:50.693

Modified: 2026-02-20T15:21:52.197

Link: CVE-2026-1971

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-17T23:00:12Z

Weaknesses