cve/CVE-2013-7389.md at d265b01db84ea263ae08fa7d2c08cb82387c2083

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 03:02:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Multiple cross-site scripting (XSS) vulnerabilities in D-Link DIR-645 Router (Rev. A1) with firmware before 1.04B11 allow remote attackers to inject arbitrary web script or HTML via the (1) deviceid parameter to parentalcontrols/bind.php, (2) RESULT parameter to info.php, or (3) receiver parameter to bsc_sms_send.php.

POC

Reference

http://roberto.greyhats.it/advisories/20130801-dlink-dir645.txt

Github

No PoCs found on GitHub currently.

803 B Raw Blame History

CVE-2013-7389

Description

POC

Reference

Github

803 B

Raw Blame History