A reflected cross-site-scripting attack in web application of D-Link DIR-X1860 before v1.10WWB09_Beta allows a remote unauthenticated attacker to execute code in the device of the victim via sending a specific URL to the unauthenticated victim.
CPE | Name | Operator | Version |
---|---|---|---|
dir-x1860_firmware | le | 1.03 |