15 matches found
EUVD-2014-4571
Malware in sbrugna...
D-Link DSL-2760U Gateway Cross Site Scripting (CVE-2013-5223)
A cross-site scripting vulnerability exists in D-Link DSL-2760U Gateway. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
D-Link DSL-2760U Gateway Cross-Site Scripting Vulnerability
A cross-site scripting XSS vulnerability exists in the D-Link DSL-2760U gateway, allowing remote authenticated users to inject arbitrary web script or HTML...
CVE-2014-4645
Cross-site scripting XSS vulnerability in dhcpinfo.html in D-link DSL-2760U-E1 allows remote attackers to inject arbitrary web script or HTML via a hostname...
CVE-2014-4645
Cross-site scripting XSS vulnerability in dhcpinfo.html in D-link DSL-2760U-E1 allows remote attackers to inject arbitrary web script or HTML via a hostname...
CVE-2014-4645
CVE-2014-4645 is an XSS vulnerability in the D-Link DSL-2760U-E1 where the affected file is the dhcpinfo.html. The root cause is unvalidated user input in the hostname that can be echoed in the web interface, enabling remote attackers to inject arbitrary script/HTML. The NVD entry documents a bro...
PT-2014-6042 · D Link · Dsl-2760U-E1
Name of the Vulnerable Software and Affected Versions: D-link DSL-2760U-E1 affected versions not specified Description: A cross-site scripting XSS issue exists in the dhcpinfo.html file, allowing remote attackers to inject arbitrary web script or HTML via a hostname. This could potentially lead t...
D-link DSL-2760U-E1 - Persistent XSS Vulnerability
Exploit for hardware platform in category web applications !/bin/bash Written and discovered by Yuval tisf Nativ The page 'dhcpinfo.html' will list all machines connected to the network with hostname, IP, MAC and IP expiration. It is possible to store an XSS in this table by changing hostname...
D-Link DSL-2760U-E1 - Persistent Cross-Site Scripting
D-Link DSL-2760U-E1 - Persistent Cross-Site Scripting !/bin/bash Written and discovered by Yuval tisf Nativ The page 'dhcpinfo.html' will list all machines connected to the network with hostname, IP, MAC and IP expiration. It is possible to store an XSS in this table by changing hostname. Checks ...
CVE-2013-5223
Multiple cross-site scripting XSS vulnerabilities in D-Link DSL-2760U Gateway Rev. E1 allow remote authenticated users to inject arbitrary web script or HTML via the 1 ntpServer1 parameter to sntpcfg.cgi, username parameter to 2 ddnsmngr.cmd or 3 todmngr.tod, 4 TodUrlAdd parameter to urlfilter.cm...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in D-Link DSL-2760U Gateway Rev. E1 allow remote authenticated users to inject arbitrary web script or HTML via the 1 ntpServer1 parameter to sntpcfg.cgi, username parameter to 2 ddnsmngr.cmd or 3 todmngr.tod, 4 TodUrlAdd parameter to urlfilter.cm...
CVE-2013-5223
Multiple cross-site scripting XSS vulnerabilities in D-Link DSL-2760U Gateway Rev. E1 allow remote authenticated users to inject arbitrary web script or HTML via the 1 ntpServer1 parameter to sntpcfg.cgi, username parameter to 2 ddnsmngr.cmd or 3 todmngr.tod, 4 TodUrlAdd parameter to urlfilter.cm...
CVE-2013-5223
Multiple cross-site scripting XSS vulnerabilities in D-Link DSL-2760U Gateway Rev. E1 allow remote authenticated users to inject arbitrary web script or HTML via the 1 ntpServer1 parameter to sntpcfg.cgi, username parameter to 2 ddnsmngr.cmd or 3 todmngr.tod, 4 TodUrlAdd parameter to urlfilter.cm...
CVE-2013-5223
CVE-2013-5223 reports multiple cross-site scripting (XSS) vulnerabilities in the D-Link DSL-2760U Gateway (Rev. E1). The issue allows remote authenticated users to inject arbitrary web script or HTML via a long list of parameters (including ntpServer1, ddnsmngr.cmd username, todmngr.tod, urlfilte...
CVE-2013-5223
Multiple cross-site scripting XSS vulnerabilities in D-Link DSL-2760U Gateway Rev. E1 allow remote authenticated users to inject arbitrary web script or HTML via the 1 ntpServer1 parameter to sntpcfg.cgi, username parameter to 2 ddnsmngr.cmd or 3 todmngr.tod, 4 TodUrlAdd parameter to urlfilter.cm...