Lucene search
K

402 matches found

NVD
NVD
added 2026/04/26 9:16 a.m.7 views

CVE-2026-7027

A vulnerability was identified in D-Link DSL-2740R EU01.15. Impacted is an unknown function of the component Wireless Setup Section. Such manipulation of the argument Wireless Network Name leads to cross site scripting. The attack can be executed remotely. The exploit is publicly available and...

4.8CVSS0.00433EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/26 8:15 a.m.4 views

CVE-2026-7027 D-Link DSL-2740R Wireless Setup Section cross site scripting

A vulnerability was identified in D-Link DSL-2740R EU01.15. Impacted is an unknown function of the component Wireless Setup Section. Such manipulation of the argument Wireless Network Name leads to cross site scripting. The attack can be executed remotely. The exploit is publicly available and...

4.8CVSS3.1AI score0.00433EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/26 12:0 a.m.11 views

PT-2026-35208

A vulnerability was identified in D-Link DSL-2740R EU 01.15. Impacted is an unknown function of the component Wireless Setup Section. Such manipulation of the argument Wireless Network Name leads to cross site scripting. The attack can be executed remotely. The exploit is publicly available and...

4.8CVSS3AI score0.00433EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/26 12:0 a.m.7 views

D-Link DSL-2740R 跨站脚本漏洞

The D-Link DSL-2740R is a high-performance ADSL router from D-Link Corporation. The D-Link DSL-2740R EU01.15 version has a cross-site scripting vulnerability. This vulnerability stems from improper handling of the Wireless Network Name parameter by the Wireless Setup Section component, which may...

4.8CVSS5.6AI score0.00433EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/26 12:0 a.m.6 views

D-Link DSL-124 安全漏洞

The D-Link DSL-124 is a wired modem-router integrated device produced by D-Link Corporation. The D-Link DSL-124 ME1.00 version contains a security vulnerability. This vulnerability stems from improper session management, which may allow attackers to execute session hijacking attacks by manipulati...

8.2CVSS5.9AI score0.00148EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/02/03 9:18 a.m.7 views

CVE-2026-1744

A vulnerability was found in D-Link DSL-6641K N8.TR069.20131126. Affected by this issue is the function doSubmitPPP of the file sppppoeuser.js. The manipulation of the argument Username results in cross site scripting. The attack may be launched remotely. The exploit has been made public and coul...

4.8CVSS4AI score0.00408EPSS
Exploits1References1
NVD
NVD
added 2026/02/02 5:15 a.m.7 views

CVE-2026-1744

A vulnerability was found in D-Link DSL-6641K N8.TR069.20131126. Affected by this issue is the function doSubmitPPP of the file sppppoeuser.js. The manipulation of the argument Username results in cross site scripting. The attack may be launched remotely. The exploit has been made public and coul...

4.8CVSS0.00408EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/02/02 4:32 a.m.3 views

CVE-2026-1744 D-Link DSL-6641K sp_pppoe_user.js doSubmitPPP cross site scripting

A vulnerability was found in D-Link DSL-6641K N8.TR069.20131126. Affected by this issue is the function doSubmitPPP of the file sppppoeuser.js. The manipulation of the argument Username results in cross site scripting. The attack may be launched remotely. The exploit has been made public and coul...

4.8CVSS4AI score0.00408EPSS
Exploits1References5
CVE
CVE
added 2026/02/02 4:32 a.m.12 views

CVE-2026-1744

CVE-2026-1744 affects D-Link DSL-6641K (N8.TR069.20131126). The vulnerability is in the doSubmitPPP function within sp_pppoe_user.js, where manipulating the Username parameter yields cross-site scripting. Exploitation can be remote, and multiple sources note the exploit is public. Remediation det...

4.8CVSS4.4AI score0.00408EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.25 views

PT-2026-5603

Name of the Vulnerable Software and Affected Versions D-Link DSL-6641K N8.TR069.20131126 Description A security issue exists in D-Link DSL-6641K N8.TR069.20131126 related to the doSubmitPPP function within the sp pppoe user.js file. Manipulation of the Username argument can lead to cross site...

4.8CVSS3.3AI score0.00408EPSS
Exploits1References10
EUVD
EUVD
added 2026/01/31 12:30 a.m.6 views

EUVD-2026-5003

A vulnerability was detected in D-Link DSL-6641K N8.TR069.20131126. Affected by this issue is the function advirtualservervdsl of the component Web Interface. Performing a manipulation of the argument Name results in cross site scripting. It is possible to initiate the attack remotely. The exploi...

4.8CVSS4.5AI score0.00223EPSS
Exploits0References6
NVD
NVD
added 2026/01/30 10:15 p.m.6 views

CVE-2026-1705

A vulnerability was detected in D-Link DSL-6641K N8.TR069.20131126. Affected by this issue is the function advirtualservervdsl of the component Web Interface. Performing a manipulation of the argument Name results in cross site scripting. It is possible to initiate the attack remotely. The exploi...

4.8CVSS0.00223EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/01/30 9:32 p.m.3 views

CVE-2026-1705

A vulnerability was detected in D-Link DSL-6641K N8.TR069.20131126. Affected by this issue is the function advirtualservervdsl of the component Web Interface. Performing a manipulation of the argument Name results in cross site scripting. It is possible to initiate the attack remotely. The exploi...

4.8CVSS4.5AI score0.00223EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/01/30 9:32 p.m.4 views

CVE-2026-1705 D-Link DSL-6641K Web ad_virtual_server_vdsl cross site scripting

A vulnerability was detected in D-Link DSL-6641K N8.TR069.20131126. Affected by this issue is the function advirtualservervdsl of the component Web Interface. Performing a manipulation of the argument Name results in cross site scripting. It is possible to initiate the attack remotely. The exploi...

4.8CVSS3.9AI score0.00223EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/01/30 9:32 p.m.33 views

CVE-2026-1705 D-Link DSL-6641K Web ad_virtual_server_vdsl cross site scripting

A vulnerability was detected in D-Link DSL-6641K N8.TR069.20131126. Affected by this issue is the function advirtualservervdsl of the component Web Interface. Performing a manipulation of the argument Name results in cross site scripting. It is possible to initiate the attack remotely. The exploi...

4.8CVSS0.00223EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/30 12:0 a.m.6 views

PT-2026-5462

Name of the Vulnerable Software and Affected Versions D-Link DSL-6641K version N8.TR069.20131126 Description A flaw exists within the Web Interface component of the device, specifically in the ad virtual server vdsl function. Manipulating the Name argument can lead to cross site scripting. This...

4.8CVSS4.7AI score0.00223EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/01/09 9:49 a.m.7 views

CVE-2020-24578

An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU2.31V1.1.47ae55. It has a misconfigured FTP service that allows a malicious network user to access system folders and download sensitive files such as the password hash file...

6.5CVSS7.1AI score0.01848EPSS
Exploits1References1
EUVD
EUVD
added 2026/01/06 12:30 a.m.6 views

EUVD-2026-0944

Multiple D-Link DSL gateway devices contain a command injection vulnerability in the dnscfg.cgi endpoint due to improper sanitization of user-supplied DNS configuration parameters. An unauthenticated remote attacker can inject and execute arbitrary shell commands, resulting in remote code...

9.3CVSS8.6AI score0.00964EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/05 12:0 a.m.10 views

PT-2026-1338

Name of the Vulnerable Software and Affected Versions D-Link DSL-2640B versions ≤ 1.07 D-Link DSL-2740R versions 1.17 D-Link DSL-2780B versions ≤ 1.01.14 D-Link DSL-526B versions ≤ 2.01 D-Link DSL gateway devices affected versions not specified Description A critical remote code execution RCE...

9.3CVSS6.8AI score0.00964EPSS
Exploits0References72
CNNVD
CNNVD
added 2025/12/22 12:0 a.m.2 views

D-Link DSL-124 访问控制错误漏洞

The D-Link DSL-124 is an optical cat routing all-in-one from China AUO D-Link. An access control error vulnerability exists in the D-Link DSL-124 ME1.00 version, which stems from a configuration file disclosure issue that could allow an unauthenticated attacker to obtain router settings via a POS...

8.8CVSS6.7AI score0.00448EPSS
Exploits1References4
Rows per page
Query Builder