Lucene search
+L

7 matches found

Nuclei
Nuclei
added yesterday28 views

TP-Link Archer A20 v3 Router - Cross-site Scripting

The TP-Link Archer A20 v3 router is vulnerable to Cross-site Scripting XSS due to improper handling of directory listing paths in the web interface. When a specially crafted URL is visited, the router's web page renders the directory listing and executes arbitrary JavaScript embedded in the URL...

4.8CVSS8.1AI score0.00875EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/29 12:0 a.m.6 views

The vulnerability in the web interface of TP-Link Archer A20 micro-programming software allows a hacker to execute arbitrary code.

The vulnerability of the web interface for managing TP-Link Archer A20 wireless routers involves a lack of measures taken to protect the website structure. Exploiting this vulnerability allows an attacker to execute arbitrary code, provided that the user specifically submits a specially crafted G...

10CVSS5.8AI score0.00875EPSS
Exploits0References4
NVD
NVD
added 2025/01/28 10:15 p.m.26 views

CVE-2024-57514

The TP-Link Archer A20 v3 router is vulnerable to Cross-site Scripting XSS due to improper handling of directory listing paths in the web interface. When a specially crafted URL is visited, the router's web page renders the directory listing and executes arbitrary JavaScript embedded in the URL...

4.8CVSS0.00875EPSS
Exploits0References1
CVE
CVE
added 2025/01/28 12:0 a.m.90 views

CVE-2024-57514

The CVE-2024-57514 entry concerns the TP-Link Archer A20 v3 router. Affected component is the web interface’s directory listing handling, where improper processing of listing paths enables Cross-site Scripting (XSS) when a crafted URL is visited. This allows injection of arbitrary JavaScript that...

4.8CVSS6.3AI score0.00875EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/28 12:0 a.m.10 views

CVE-2024-57514

The TP-Link Archer A20 v3 router is vulnerable to Cross-site Scripting XSS due to improper handling of directory listing paths in the web interface. When a specially crafted URL is visited, the router's web page renders the directory listing and executes arbitrary JavaScript embedded in the URL...

5AI score0.00875EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/28 12:0 a.m.14 views

CVE-2024-57514

The TP-Link Archer A20 v3 router is vulnerable to Cross-site Scripting XSS due to improper handling of directory listing paths in the web interface. When a specially crafted URL is visited, the router's web page renders the directory listing and executes arbitrary JavaScript embedded in the URL...

0.00875EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/28 12:0 a.m.13 views

PT-2025-1301 · Tp Link · Tp-Link Archer C20

Name of the Vulnerable Software and Affected Versions: TP-Link Archer A20 v3 version 1.0.6 Build 20231011 rel.857175553 Description: The issue arises from improper handling of directory listing paths in the web interface, allowing for Cross-site Scripting XSS attacks. When a specially crafted URL...

10CVSS5.7AI score0.00875EPSS
Exploits0References9
Rows per page
Query Builder