EUVD-2026-33420

A stored cross-site scripting XSS vulnerability has been identified in the web management interface of TP-Link's TL-SG108PE v5 switch due to improper sanitation of the SYSNAM configuration parameter during configuration file import. An attacker with administrator access can inject malicious scrip...

PT-2026-44972

Name of the Vulnerable Software and Affected Versions TP-Link TL-SG108PE v5 affected versions not specified Description A stored cross-site scripting XSS issue exists in the web management interface. This occurs because the SYSNAM configuration parameter is not properly sanitized during the...

TP-Link TL-SG108PE 安全漏洞

The TP-Link TL-SG108PE is an 8-port Gigabit Ethernet intelligent managed PoE switch from TP-Link Corporation. The TP-Link TL-SG108PE v5 has a security vulnerability, which stems from improper cleaning of SYSNAM configuration parameters during the file configuration import process in the web...

CVE-2023-28368

TP-Link L2 switch T2600G-28SQ firmware versions prior to 'T2600G-28SQUNV11.0.6 Build 20230227' uses vulnerable SSH host keys. A fake device may be prepared to spoof the affected device with the vulnerable host key.If the administrator may be tricked to login to the fake device, the credential...

The vulnerability of the microprogramming software of TP-Link TL-SG1016DE switches stems from the lack of measures taken to protect the website structure. This allows attackers to perform cross-site scripting attacks.

The vulnerability of TP-Link TL-SG1016DE switch’s microprogramming software exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...

PT-2024-5357 · Tp Link · Tp-Link Tl-Sg1016De

Name of the Vulnerable Software and Affected Versions: TP-Link TL-SG1016DE version TL-SG1016DEUN V7.6 1.0.0 Build 20230616 Description: The issue is related to an authenticated stored cross-site scripting XSS that could allow an adversary to run JavaScript in an administrator's browser. This is d...

TP-LINK JetStream Smart Switch TL-SG2210P Security Breach

The TP-LINK JetStream Smart Switch TL-SG2210P is a smart switch from China P&L TP-LINK. A security vulnerability exists in TP-LINK JetStream Smart Switch TL-SG2210P version 5.0 Build 20211201, which originated from a vulnerability that allows an attacker to elevate privileges by modifying the tid...

TP-Link T2600G-28SQ uses vulnerable SSH host keys

Overview TP-Link layer-2 switch T2600G-28SQ uses vulnerable SSH host keys CWE-1391. Kuniyuki Hasegawa of VeriServe Corporation reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact The credential information for a...

TP-LINK T2600G-28SQ 安全漏洞

The TP-LINK T2600G-28SQ is a switch from China P&L TP-LINK. A security vulnerability exists in the TP-LINK T2600G-28SQ. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor's announcement...

TP-Link TL-SG108E Cross-Site Scripting Vulnerability

The TP-Link TL-SG108E is a Gigabit Ethernet switch from China P&L TP-LINK. A cross-site scripting vulnerability exists in the systemnameset.cgi file in the TP-Link TL-SG108E version 1.0.0. A remote attacker can exploit this vulnerability to submit arbitrary Java script with the help of the...

TP-Link TL-SG108E Certificate Disclosure Vulnerability

The TP-Link TL-SG108E is a Gigabit Ethernet switch. A security vulnerability exists in the TP-Link TL-SG108E. A remote attacker can exploit the vulnerability to read 'SEND data' logs and retrieve certificates...

CVE-2017-8075

On the TP-Link TL-SG108E 1.0, a remote attacker could retrieve credentials from "Switch Info" log lines where passwords are in cleartext. This affects the 1.1.2 Build 20141017 Rel.50749 firmware...