PT-2018-11624 · Tp Link · Tp-Link Archer C1200

Usman Saeed

·

Publicado

2018-07-04

·

Atualizado

2019-03-28

·

CVE-2018-13134

CVSS v3.1

6.1

Média

VetorAV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Name of the Vulnerable Software and Affected Versions TP-Link Archer C1200 version 1.13 Build 2018/01/24 rel.52299
Description The issue concerns a problem where devices are affected by XSS via the PATH INFO to the "/webpages/data" URI.
Recommendations For TP-Link Archer C1200 version 1.13 Build 2018/01/24 rel.52299, avoid using the /webpages/data URI until the issue is resolved.

Exploit

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

CVE-2018-13134

Produtos afetados

Tp-Link Archer C1200