3 matches found
CVE-2014-9518
Cross-site scripting XSS vulnerability in login.cgi in D-Link router DIR-655 rev Bx with firmware before 2.12b01 allows remote attackers to inject arbitrary web script or HTML via the htmlresponsepage parameter...
CVE-2014-9518
Cross-site scripting XSS vulnerability in login.cgi in D-Link router DIR-655 rev Bx with firmware before 2.12b01 allows remote attackers to inject arbitrary web script or HTML via the htmlresponsepage parameter...
CVE-2014-9518
CVE-2014-9518 is an XSS in the D-Link router DIR-655 (rev Bx) login.cgi. The vulnerability arises from insufficient input sanitization of the html_response_page parameter, enabling remote attackers to inject arbitrary web script/HTML. Affected firmware versions are before 2.12b01. The cited sourc...