Dlink : Security Vulnerabilities, CVEs, Published In 2017 (XSS)
XSS exists on D-Link DWR-933 1.00(WW)B17 devices via cgi-bin/gui.cgi.
Max CVSS
6.1
EPSS Score
0.09%
Published
2017-11-10
Updated
2021-04-23
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/wandetect.php.
Max CVSS
6.1
EPSS Score
0.09%
Published
2017-09-13
Updated
2023-11-08
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/sitesurvey.php.
Max CVSS
6.1
EPSS Score
0.09%
Published
2017-09-13
Updated
2023-11-08
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/shareport.php.
Max CVSS
6.1
EPSS Score
0.09%
Published
2017-09-13
Updated
2023-11-08
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/wpsacts.php.
Max CVSS
6.1
EPSS Score
0.09%
Published
2017-09-13
Updated
2023-11-08
D-Link DSL-2740E 1.00_BG_20150720 devices are prone to persistent XSS attacks in the username and password fields: a remote unauthenticated user may craft logins and passwords with script tags in them. Because there is no sanitization in the input fields, an unaware logged-in administrator may be a victim when checking the router logs.
Max CVSS
6.1
EPSS Score
0.23%
Published
2017-10-31
Updated
2023-04-26
6 vulnerabilities found