CVE-2026-7026 D-Link DGS-3420 System Information Settings cross site scripting

A vulnerability was determined in D-Link DGS-3420 1.50.018. This issue affects some unknown processing of the component System Information Settings Page. This manipulation of the argument System Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been...

CVE-2026-7026

The CVE concerns D-Link DGS-3420 firmware 1.50.018 with a cross-site scripting vulnerability in the System Information Settings Page, caused by manipulation of the System Name argument. The issue allows remote exploitation and the exploit has been publicly disclosed. Supported metrics indicate CV...

CVE-2026-7026 D-Link DGS-3420 System Information Settings cross site scripting

A vulnerability was determined in D-Link DGS-3420 1.50.018. This issue affects some unknown processing of the component System Information Settings Page. This manipulation of the argument System Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been...

D-Link DGS-3420 跨站脚本漏洞

The D-Link DGS-3420 is a managed Gigabit Ethernet switch designed for enterprise networks by D-Link Corporation. The version 1.50.018 of the D-Link DGS-3420 contains a cross-site scripting vulnerability. This vulnerability arises from improper handling of the System Name parameter in the System...

PT-2026-35207

A vulnerability was determined in D-Link DGS-3420 1.50.018. This issue affects some unknown processing of the component System Information Settings Page. This manipulation of the argument System Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been...

CVE-2021-37379

Cross Site Scripting XSS vulnerability in Teradek Sphere all firmware versions allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware updates to address...

CVE-2021-37378

Cross Site Scripting XSS vulnerability in Teradek Cube and Cube Pro firmware version 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any...

CVE-2021-37377

Cross Site Scripting XSS vulnerability in Teradek Brik firmware version 7.2.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware updates...

CVE-2021-37378

Cross Site Scripting XSS vulnerability in Teradek Cube and Cube Pro firmware version 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any...

CVE-2021-37379

Cross Site Scripting XSS vulnerability in Teradek Sphere all firmware versions allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware updates to address...

CVE-2021-37376

Cross Site Scripting XSS vulnerability in Teradek Bond, Bond 2 and Bond Pro firmware version 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving...

CVE-2021-37373

Cross Site Scripting XSS vulnerability in Teradek Slice 1st generation firmware 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware...

CVE-2021-37373

Cross Site Scripting XSS vulnerability in Teradek Slice 1st generation firmware 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware...

CVE-2021-37373

Teradek Slice (1st generation) firmware 7.3.x and earlier is vulnerable to a Cross Site Scripting (XSS) flaw in the Friendly Name field of System Information Settings. The root cause is improper handling of input in that field, enabling an attacker to execute arbitrary code remotely. Exploitation...

PT-2023-12315 · Teradek · Teradek Cube Pro +1

Name of the Vulnerable Software and Affected Versions: Teradek Cube and Cube Pro versions 7.3.x and earlier Description: The issue allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. This is a result of a Cross Site Scripting XSS vulnerability...

PT-2023-12313 · Teradek · Bond Pro +2

Name of the Vulnerable Software and Affected Versions: Teradek Bond, Bond 2 and Bond Pro versions 7.3.x and earlier Description: A Cross Site Scripting XSS issue allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. The vendor states that the...

Teradek Slice 跨站脚本漏洞

Teradek Slice is a rackmount video decoder from Teradek. A security vulnerability exists in Teradek Slice 1st generation firmware version 7.3.x and earlier. An attacker could exploit the vulnerability to execute arbitrary code via the Friendly Name field in System Information Settings...

Teradek Clip 跨站脚本漏洞

Teradek Clip is Teradek's video signal transmitter for drones with encoding and wireless signal transmission. A security vulnerability exists in Teradek Clip. An attacker could use this vulnerability to execute arbitrary code via the Friendly Name field in System Information Settings...

Teradek Brik 跨站脚本漏洞

Teradek Brik is a wireless monitor from Teradek. A security vulnerability exists in Teradek Brik version 7.2.x and prior versions. An attacker could exploit the vulnerability to execute arbitrary code via the Friendly Name field in System Information Settings...

Teradek Cube 跨站脚本漏洞

Teradek Cube is a video decoder from Teradek. A security vulnerability exists in Teradek Cube version 7.3.x and prior versions. An attacker could exploit the vulnerability to execute arbitrary code via the Friendly Name field in System Information Settings...