CVE-2020-15895
published 2020-07-22CVE-2020-15895: An XSS issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. In the file webinc/js/info.php, no output filtration is applied to the RESULT…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
An XSS issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. In the file webinc/js/info.php, no output filtration is applied to the RESULT parameter, before it's printed on the webpage.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dlink | dir-816l_firmware | — | — |
| dlink | dir-816l_firmware | — | — |