Central Wifimanager Security Vulnerabilities and Issues — Central Wifimanager CVE List

Lucene search

DlinkCentral Wifimanager

3 matches found

CVE•added 2019/07/06 11:15 p.m.•303 views

CVE-2019-13374

A cross-site scripting (XSS) vulnerability in resource view in PayAction.class.php in D-Link Central WiFi Manager CWM(100) before v1.03R0100_BETA6 allows remote attackers to inject arbitrary web script or HTML via the index.php/Pay/passcodeAuth passcode parameter.

6.1CVSS5.9AI score0.00197EPSS

CVE•added 2018/10/08 4:29 p.m.•62 views

CVE-2018-17441

An issue was discovered on D-Link Central WiFi Manager before v 1.03r0100-Beta1. The 'username' parameter of the addUser endpoint is vulnerable to stored XSS.

6.1CVSS7.5AI score0.4206EPSS

CVE•added 2018/10/08 4:29 p.m.•55 views

CVE-2018-17443

An issue was discovered on D-Link Central WiFi Manager before v 1.03r0100-Beta1. The 'sitename' parameter of the UpdateSite endpoint is vulnerable to stored XSS.

6.1CVSS7.5AI score0.4206EPSS