Unrated severityNVD Advisory· Published Feb 12, 2013· Updated Apr 29, 2026

CVE-2011-5261

Description

Cross-site scripting (XSS) vulnerability in serverreport.cgi in Axis M10 Series Network Cameras M1054 firmware 5.21 and earlier allows remote attackers to inject arbitrary web script or HTML via the pageTitle parameter to admin/showReport.shtml.

Affected products

Axis/M10 Series Network Cameras Firmware
cpe:2.3:o:axis:m10_series_network_cameras_firmware:*:*:*:*:*:*:*:*
Range: <=5.21
Axis/M1054 Network Camera
cpe:2.3:h:axis:m1054_network_camera:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

metzgersecurity.blogspot.com/2011/11/xss-vulnerability-axis-m10-series.htmlnvdExploit
secunia.com/advisories/47037nvdVendor Advisory
osvdb.org/77395nvd
www.securityfocus.com/bid/50968nvd
exchange.xforce.ibmcloud.com/vulnerabilities/71687nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000