2 matches found
CVE-2019-13562
D-Link DIR-655 C devices before 3.02B05 BETA03 allow XSS, as demonstrated by the /www/pingresponse.cgi pingipaddr parameter, the /www/ping6response.cgi ping6ipaddr parameter, and the /www/applysec.cgi htmlresponsereturnpage parameter...
CVE-2019-13562
CVE-2019-13562 affects D-Link DIR-655 C devices prior to 3.02B05 BETA03, enabling XSS via web pages /www/ping_response.cgi, /www/ping6_response.cgi, and /www/apply_sec.cgi due to insufficient input validation in the Web UI. Affected firmware is DIR-655 C before 3.02B05 BETA03; remediation per sou...