Full title: Shenzhen C-Data CD7201 Command Injection / Cross Site Scripting Vulnerability Category: web applications Platform: hardware Shenzhen C-Data CD7201 with software version 2.4.6b and firmware version 7.1.0 suffer from authentication bypass, command injection, and cross site scripting vulnerabilities. # 0day.today @ http://0day.today/