Vulnerabilities > TP Link > TD W9977 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-03-26 CVE-2021-3275 Cross-site Scripting vulnerability in Tp-Link products
Unauthenticated stored cross-site scripting (XSS) exists in multiple TP-Link products including WIFI Routers (Wireless AC routers), Access Points, ADSL + DSL Gateways and Routers, which affects TD-W9977v1, TL-WA801NDv5, TL-WA801Nv6, TL-WA802Nv5, and Archer C3150v2 devices through the improper validation of the hostname.
network
low complexity
tp-link CWE-79
6.1