3 matches found
CVE-2018-15874
Cross-site scripting XSS vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status - Active Client Table" page via the hostname field in a DHCP request...
CVE-2018-15874
Cross-site scripting XSS vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status - Active Client Table" page via the hostname field in a DHCP request...
CVE-2018-15874
The connected CNVD entry describes a Cross-Site Scripting (XSS) vulnerability in D-Link DIR-615 routers using version 20.07, exploitable by injecting JavaScript into the Status → Active Client Table via the hostname field in DHCP requests. Affected component: the DHCP hostname handling on DIR-615...