Vulnerabilities > Dlink > DSL 3782

DATE CVE VULNERABILITY TITLE RISK
2019-04-01 CVE-2018-17990 OS Command Injection vulnerability in Dlink Dsl-3782 Firmware 1.01
An issue was discovered on D-Link DSL-3782 devices with firmware 1.01.
network
low complexity
dlink CWE-78
critical
 9.0
9.0
2019-04-01 CVE-2018-17989 Cross-site Scripting vulnerability in Dlink Dsl-3782 Firmware 1.01
A stored XSS vulnerability exists in the web interface on D-Link DSL-3782 devices with firmware 1.01 that allows authenticated attackers to inject a JavaScript or HTML payload inside the ACL page.
network
dlink CWE-79
3.5
3.5