Multiple cross-site scripting (XSS) vulnerabilities in the TP-LINK TL-WR841N router with firmware 3.13.9 Build 120201 Rel.54965n and previous versions allow remote administrators to inject arbitrary web script or HTML via the (1) username or (2) pwd parameter to userRpm/NoipDdnsRpm.htm.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tp-link tl-wr841n_firmware |
||
tp-link tl-wr841n - |