PT-2020-14693 · D Link · Dir-816
Published
2020-07-22
·
Updated
2023-11-08
·
CVE-2020-15895
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
D-Link DIR-816L devices versions 2.x before 1.10b04Beta02
Description
A security issue was found where an XSS problem exists due to a lack of output filtration applied to the
RESULT parameter in the file webinc/js/info.php, which is then printed on the webpage.Recommendations
For versions 2.x before 1.10b04Beta02, update to version 1.10b04Beta02 or later to resolve the issue.
Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dir-816