CVE-2018-13134

MEDIUM

Tp-link Archer C1200 Firmware - XSS

Title source: rule
STIX 2.1

Description

TP-Link Archer C1200 1.13 Build 2018/01/24 rel.52299 EU devices have XSS via the PATH_INFO to the /webpages/data URI.

Exploits (1)

exploitdb WORKING POC
by Usman Saeed · textwebappshardware
https://www.exploit-db.com/exploits/45970

References (2)

Core 2
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/45970/

Scores

CVSS v3 6.1
EPSS 0.0036
EPSS Percentile 58.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (1)
tp-link/archer_c1200_firmware 1.13
Published Jul 04, 2018
Tracked Since Feb 18, 2026