On Netis DL4323 devices, XSS exists via the form2userconfig.cgi username parameter (User Account Configuration).