EXPLOITDB-EDB-45336

EXPLOITDB text WORKING POC

Exploit for CVE-2018-14497 - Tenda D152 - XSS

AI Analysis

This exploit demonstrates a stored XSS vulnerability in the Tenda D152 ADSL Router. By injecting a malicious script into the SSID field under 'Basic Settings', an attacker can execute arbitrary JavaScript in the context of the router's web interface.

Attack Type

XSS

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1189 - Drive-by Compromise

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type webapps

Platform hardware

Language text

Files 1

https://www.exploit-db.com/exploits/45336

Authors

Sandip Dey

Vulnerability

CVE-2018-14497

Tenda D152 - XSS

MEDIUM

CVSS 5.4