CVE-2017-14414

MEDIUM

D-Link DIR-850L REV. A FW114WWb07_h2ab_beta1 - Cross-Site Scripting via shareport.php action parameter

Title source: llm
STIX 2.1

Description

D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/shareport.php.

References (1)

Core 1
Core References

Scores

CVSS v3 6.1
EPSS 0.0025
EPSS Percentile 48.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (2)
dlink/dir-850l_firmware fw114wwb07_h2ab beta1
dlink/dir-850l_firmware < fw114wwb07_h2ab
Published Sep 13, 2017
Tracked Since Feb 18, 2026