D-Link.DSL-2730B.Multiple.XSS
Description
This indicates an attack attempt against a Cross Site Request Forgery vulnerability in D-Link DSL-2730B.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application when handling a crafted HTTP request. An attacker can exploit this by tricking an unsuspecting user into visiting a malicious webpage, leading to other attacks.
Affected Products
D-Link DSL-2730B router (rev C1) with firmware GE_1.01
Impact
System Compromise: Remote attackers can execute arbitrary script code in the context of the affected site.
Recommended Actions
Currently we are unaware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |