3 matches found
CVE-2017-17745
Summary of CVE-2017-17745 (TP-Link TL-SG108E) : A cross-site scripting vulnerability exists in the device’s web management interface due to improper input handling in system_name_set.cgi, specifically the sysName parameter. Exploitation requires authentication and allows an attacker to submit arb...
TP-Link TL-SG108E XSS / Weak Access Control Vulnerability
TP-Link TL-SG108E with firmware 1.0.0 Build 20160722 Rel.50167 suffers from cross site scripting and weak access control vulnerabilities. Overview ------------- Three vulnerabilities have been discovered in the TP-Link TL-SG108E, firmware 1.0.0 Build 20160722 Rel.50167: CVE-2017-17745 - Cross Sit...
TP-Link TL-SG108E XSS / Weak Access Control
Overview ------------- Three vulnerabilities have been discovered in the TP-Link TL-SG108E, firmware 1.0.0 Build 20160722 Rel.50167: CVE-2017-17745 - Cross Site Scripting XSS in systemnameset.cgi, sysName parameter CVE-2017-17746 - Weak access control for user authentication CVE-2017-17747 - Weak...