On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi (aka the Keyword field of the URL Blocking Configuration).Referenceshttps://drive.google.com/open?id=1vIHv-UY0QLdnxDi-RW1hQHrdcuho0HRfhttps://drive.google.com/open?id=1EtpCu6eZ0Hf2J70zg59wIlhUE8_bx1HEhttps://fatihhcelik.blogspot.com/2019/12/xss-vulnerability-on-netis-dl4323.html
