CVE-2026-7026 D-Link DGS-3420 System Information Settings cross site scripting

A vulnerability was determined in D-Link DGS-3420 1.50.018. This issue affects some unknown processing of the component System Information Settings Page. This manipulation of the argument System Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been...

CVE-2026-7026

The CVE concerns D-Link DGS-3420 firmware 1.50.018 with a cross-site scripting vulnerability in the System Information Settings Page, caused by manipulation of the System Name argument. The issue allows remote exploitation and the exploit has been publicly disclosed. Supported metrics indicate CV...

CVE-2026-7026 D-Link DGS-3420 System Information Settings cross site scripting

A vulnerability was determined in D-Link DGS-3420 1.50.018. This issue affects some unknown processing of the component System Information Settings Page. This manipulation of the argument System Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been...

PT-2026-35207

A vulnerability was determined in D-Link DGS-3420 1.50.018. This issue affects some unknown processing of the component System Information Settings Page. This manipulation of the argument System Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been...

D-Link DGS-3420 跨站脚本漏洞

The D-Link DGS-3420 is a managed Gigabit Ethernet switch designed for enterprise networks by D-Link Corporation. The version 1.50.018 of the D-Link DGS-3420 contains a cross-site scripting vulnerability. This vulnerability arises from improper handling of the System Name parameter in the System...

CVE-2021-37379

Cross Site Scripting XSS vulnerability in Teradek Sphere all firmware versions allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware updates to address...

CVE-2021-37379

Cross Site Scripting XSS vulnerability in Teradek Sphere all firmware versions allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware updates to address...

CVE-2021-37377

Cross Site Scripting XSS vulnerability in Teradek Brik firmware version 7.2.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware updates...

CVE-2021-37378

Cross Site Scripting XSS vulnerability in Teradek Cube and Cube Pro firmware version 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any...

CVE-2021-37378

Cross Site Scripting XSS vulnerability in Teradek Cube and Cube Pro firmware version 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any...

CVE-2021-37373

Cross Site Scripting XSS vulnerability in Teradek Slice 1st generation firmware 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware...

CVE-2021-37376

Cross Site Scripting XSS vulnerability in Teradek Bond, Bond 2 and Bond Pro firmware version 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving...

CVE-2021-37373

Cross Site Scripting XSS vulnerability in Teradek Slice 1st generation firmware 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware...

PT-2023-12313 · Teradek · Bond Pro +2

Name of the Vulnerable Software and Affected Versions: Teradek Bond, Bond 2 and Bond Pro versions 7.3.x and earlier Description: A Cross Site Scripting XSS issue allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. The vendor states that the...

CVE-2021-37373

Cross Site Scripting XSS vulnerability in Teradek Slice 1st generation firmware 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware...

Teradek Brik 跨站脚本漏洞

Teradek Brik is a wireless monitor from Teradek. A security vulnerability exists in Teradek Brik version 7.2.x and prior versions. An attacker could exploit the vulnerability to execute arbitrary code via the Friendly Name field in System Information Settings...

Teradek Clip 跨站脚本漏洞

Teradek Clip is Teradek's video signal transmitter for drones with encoding and wireless signal transmission. A security vulnerability exists in Teradek Clip. An attacker could use this vulnerability to execute arbitrary code via the Friendly Name field in System Information Settings...

Teradek Cube 跨站脚本漏洞

Teradek Cube is a video decoder from Teradek. A security vulnerability exists in Teradek Cube version 7.3.x and prior versions. An attacker could exploit the vulnerability to execute arbitrary code via the Friendly Name field in System Information Settings...

CVE-2021-37374

Cross Site Scripting XSS vulnerability in Teradek Clip all firmware versions allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware updates to address...

CVE-2021-37373

Teradek Slice (1st generation) firmware 7.3.x and earlier is vulnerable to a Cross Site Scripting (XSS) flaw in the Friendly Name field of System Information Settings. The root cause is improper handling of input in that field, enabling an attacker to execute arbitrary code remotely. Exploitation...