CVE-2016-10719
TP-Link Archer CR-700 (firmware 1.0.6) is affected by a cross-site scripting (XSS) vulnerability that can be triggered via a DHCP request to inject script into the admin session. The exploit could lead to theft of cookies containing base64-encoded username and password information. Affected compo...