Lucene search
+L

7 matches found

redhatcve
redhatcve
added 2025/10/17 7:46 p.m.7 views

CVE-2025-34253

D-Link Nuclias Connect firmware versions = 1.3.1.4 contain a stored cross-site scripting XSS vulnerability due to improper sanitization of the 'Network' field when editing the configuration, creating a profile, and adding a network. An authenticated attacker can inject arbitrary JavaScript to be...

5.4CVSS5.7AI score0.00501EPSS
Exploits0References1
euvd
euvd
added 2025/10/16 9:31 p.m.8 views

EUVD-2025-34830

D-Link Nuclias Connect firmware versions = 1.3.1.4 contain a stored cross-site scripting XSS vulnerability due to improper sanitization of the 'Network' field when editing the configuration, creating a profile, and adding a network. An authenticated attacker can inject arbitrary JavaScript to be...

5.1CVSS5.2AI score0.00501EPSS
Exploits0References4
osv
osv
added 2025/10/16 7:15 p.m.3 views

CVE-2025-34253

D-Link Nuclias Connect firmware versions = 1.3.1.4 contain a stored cross-site scripting XSS vulnerability due to improper sanitization of the 'Network' field when editing the configuration, creating a profile, and adding a network. An authenticated attacker can inject arbitrary JavaScript to be...

5.4CVSS5.7AI score0.00501EPSS
Exploits0References3
nvd
nvd
added 2025/10/16 7:15 p.m.5 views

CVE-2025-34253

D-Link Nuclias Connect firmware versions = 1.3.1.4 contain a stored cross-site scripting XSS vulnerability due to improper sanitization of the 'Network' field when editing the configuration, creating a profile, and adding a network. An authenticated attacker can inject arbitrary JavaScript to be...

5.4CVSS0.00501EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2025/10/16 6:53 p.m.4 views

CVE-2025-34253 D-Link Nuclias Connect <= v1.3.1.4 Stored Cross-Site Scripting (XSS)

D-Link Nuclias Connect firmware versions = 1.3.1.4 contain a stored cross-site scripting XSS vulnerability due to improper sanitization of the 'Network' field when editing the configuration, creating a profile, and adding a network. An authenticated attacker can inject arbitrary JavaScript to be...

5.1CVSS5.2AI score0.00501EPSS
Exploits0References3
cvelist
cvelist
added 2025/10/16 6:53 p.m.9 views

CVE-2025-34253 D-Link Nuclias Connect <= v1.3.1.4 Stored Cross-Site Scripting (XSS)

D-Link Nuclias Connect firmware versions = 1.3.1.4 contain a stored cross-site scripting XSS vulnerability due to improper sanitization of the 'Network' field when editing the configuration, creating a profile, and adding a network. An authenticated attacker can inject arbitrary JavaScript to be...

5.1CVSS0.00501EPSS
Exploits0References3
cve
cve
added 2025/10/16 6:53 p.m.14 views

CVE-2025-34253

D-Link Nuclias Connect firmware versions

5.4CVSS5.2AI score0.00501EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder