Vulnerabilities > Dlink > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-18 | CVE-2021-46108 | Cross-site Scripting vulnerability in Dlink Dsl-2730E Firmware Ct20131125 D-Link DSL-2730E CT-20131125 devices allow XSS via the username parameter to the password page in the maintenance configuration. | 3.5 |
| 2021-02-12 | CVE-2020-27863 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Dlink Dsl-2888A Firmware and Dva-2800 Firmware This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DVA-2800 and DSL-2888A routers. | 3.3 |
| 2019-08-01 | CVE-2019-14334 | Improper Certificate Validation vulnerability in Dlink products An issue was discovered on D-Link 6600-AP, DWL-3600AP, and DWL-8610AP Ax 4.2.0.14 21/03/2019 devices. | 2.1 |
| 2019-08-01 | CVE-2019-14336 | Unspecified vulnerability in Dlink 6600-Ap Firmware and Dwl-3600Ap Firmware An issue was discovered on D-Link 6600-AP and DWL-3600AP Ax 4.2.0.14 21/03/2019 devices. | 2.1 |
| 2019-08-01 | CVE-2019-14337 | OS Command Injection vulnerability in Dlink 6600-Ap Firmware and Dwl-3600Ap Firmware An issue was discovered on D-Link 6600-AP and DWL-3600AP Ax 4.2.0.14 21/03/2019 devices. | 2.1 |
| 2019-07-02 | CVE-2017-8417 | Credentials Management vulnerability in Dlink Dcs-1100 Firmware and Dcs-1130 Firmware An issue was discovered on D-Link DCS-1100 and DCS-1130 devices. | 3.3 |
| 2019-04-18 | CVE-2019-11017 | Cross-site Scripting vulnerability in Dlink Di-524 Firmware 2.06Ru On D-Link DI-524 V2.06RU devices, multiple Stored and Reflected XSS vulnerabilities were found in the Web Configuration: /spap.htm, /smap.htm, and /cgi-bin/smap, as demonstrated by the cgi-bin/smap RC parameter. | 3.5 |
| 2019-04-01 | CVE-2018-17989 | Cross-site Scripting vulnerability in Dlink Dsl-3782 Firmware 1.01 A stored XSS vulnerability exists in the web interface on D-Link DSL-3782 devices with firmware 1.01 that allows authenticated attackers to inject a JavaScript or HTML payload inside the ACL page. | 3.5 |
| 2018-09-12 | CVE-2018-16605 | Cross-site Scripting vulnerability in Dlink Dir-600M Firmware D-Link DIR-600M devices allow XSS via the Hostname and Username fields in the Dynamic DNS Configuration page. | 3.5 |
| 2013-11-19 | CVE-2013-5223 | Cross-Site Scripting vulnerability in Dlink Dsl-2760U Multiple cross-site scripting (XSS) vulnerabilities in D-Link DSL-2760U Gateway (Rev. | 3.5 |