Lucene search
+L

5 matches found

NVD
NVD
added 2019/12/03 8:15 p.m.20 views

CVE-2019-18993

OpenWrt 18.06.4 allows XSS via the "New port forward" Name field to the cgi-bin/luci/admin/network/firewall/forwards URI this can occur, for example, on a TP-Link Archer C7 device...

5.4CVSS5.3AI score0.00516EPSS
Exploits0References1
Prion
Prion
added 2019/12/03 8:15 p.m.17 views

Design/Logic Flaw

OpenWrt 18.06.4 allows XSS via the "New port forward" Name field to the cgi-bin/luci/admin/network/firewall/forwards URI this can occur, for example, on a TP-Link Archer C7 device...

3.5CVSS5.2AI score0.00516EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/12/03 7:29 p.m.25 views

CVE-2019-18993

OpenWrt 18.06.4 allows XSS via the "New port forward" Name field to the cgi-bin/luci/admin/network/firewall/forwards URI this can occur, for example, on a TP-Link Archer C7 device...

5.3AI score0.00516EPSS
Exploits0References1
CVE
CVE
added 2019/12/03 7:29 p.m.63 views

CVE-2019-18993

OpenWrt 18.06.4 is affected by a stored/reflected XSS vulnerability in the web UI, allowing an attacker to inject scripts via the New port forward Name field targeting the cgi-bin/luci/admin/network/firewall/forwards URI (e.g., on TP-Link Archer C7). The issue stems from insufficient input valida...

5.4CVSS5.2AI score0.00516EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2019/12/03 12:0 a.m.8 views

PT-2019-15744 · Tp Link +1 · Tp-Link Archer C7 +1

Name of the Vulnerable Software and Affected Versions: OpenWrt version 18.06.4 Description: The issue allows for XSS via the "New port forward" Name field to the "cgi-bin/luci/admin/network/firewall/forwards" URI. This can occur on devices such as the TP-Link Archer C7. Recommendations: For OpenW...

5.4CVSS5.3AI score0.00516EPSS
Exploits0References2
Rows per page
Query Builder