The NETGEAR SRX5308 is a VPN firewall appliance from NETGEAR. The NETGEAR SRX5308 suffers from a cross-site scripting vulnerability that stems from an incorrect manipulation of the parameter BandWidthProfile.ProfileName. An attacker could use this vulnerability to steal the victimβs cookie-based authentication credentials.