reevesrs24

3 exploits Active since Aug 2018
CVE-2018-15874 WRITEUP MEDIUM WRITEUP
Dlink Dir-615 Firmware - XSS
Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status -> Active Client Table" page via the hostname field in a DHCP request.
CVSS 6.1
CVE-2018-15875 WRITEUP MEDIUM WRITEUP
Dlink Dir-615 Firmware - XSS
Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows attackers to inject JavaScript into the router's admin UPnP page via the description field in an AddPortMapping UPnP SOAP request.
CVSS 6.1
CVE-2019-14363 WRITEUP CRITICAL WRITEUP
NETGEAR WNDR3400v3 - Buffer Overflow
A stack-based buffer overflow in the upnpd binary running on NETGEAR WNDR3400v3 routers with firmware version 1.0.1.18_1.0.63 allows an attacker to remotely execute arbitrary code via a crafted UPnP SSDP packet.
CVSS 9.8