Advertisement
CVE | Category | Price | Severity |
---|---|---|---|
CVE-2020-27265 | CWE-79 | Not specified | Medium |
Author | Risk | Exploitation Type | Date |
---|---|---|---|
nullzero | Medium | Remote | 2018-09-06 |
CVSS | EPSS | EPSSP |
---|---|---|
CVSS:4.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H | 0.02432 | 0.49835 |
# Exploit Title: D-Link Dir-600M N150 - Cross-Site Scripting # Date: 2018-09-06 # Exploit Author: PUNIT DARJI # Vendor Homepage: www.dlink.co.in # Hardware Link: https://amzn.to/2NUIniO # Version: DIR-600M Firmware 3.01 # Tested on: Windows 7 ultimate # CVE: N/A #POC Goto your Wifi Router Gateway [i.e: 192.168.X.X ip address of router] Go to --> "Advance" --> "Dynamic DNS" --> "Hostname" <script>alert("PSYCHO55")</script> "Username" --> <script>alert("PunitDarji")</script> and hit apply Refresh the page, and you will get the 2 pop-up first "PSYCHO55" and second "PunitDarji".
Copyright ©2024 Exploitalert.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.