Security News > 2016 > August > XSS flaw in D-Link NAS devices allows attackers to mess with your data (Help Net Security)
Security researcher Benjamin Daniel Mussler has unearthed an XSS flaw affecting seven D-Link NAS devices – a flaw which could allow attackers to access the devices and peruse and change the stored contents. He first found it in the firmware of D-Link DNS-320 rev A, a Network Storage Enclosure that allows users to access stored data via SMB and can be configured through a web interface. “The device’s administrative web interface contains a Stored Cross-Site … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/2kemFI_nxCo/