D-Link DIR-615 Cross-Site Scripting Vulnerability (CNVD-2018-16520)

D-Link DIR-615 is a small wireless router product from AUO D-Link. A cross-site scripting vulnerability exists in the D-Link DIR-615 version 20.07. A remote attacker can exploit this vulnerability by injecting JavaScript code into the 'Status - Active Client Table' page with the 'hostname' field ...

CVE-2018-15874

Cross-site scripting XSS vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status - Active Client Table" page via the hostname field in a DHCP request...

Cross site scripting

Cross-site scripting XSS vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status - Active Client Table" page via the hostname field in a DHCP request...

CVE-2018-15874

The connected CNVD entry describes a Cross-Site Scripting (XSS) vulnerability in D-Link DIR-615 routers using version 20.07, exploitable by injecting JavaScript into the Status → Active Client Table via the hostname field in DHCP requests. Affected component: the DHCP hostname handling on DIR-615...

CVE-2018-15874

Cross-site scripting XSS vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status - Active Client Table" page via the hostname field in a DHCP request...