Cross-site scripting (XSS) vulnerability in dhcpinfo.html in D-link DSL-2760U-E1 allows remote malicious users to inject arbitrary web script or HTML via a hostname.
#!/bin/bash
# Written and discovered by Yuval tisf Nativ
# The page 'dhcpinfohtml' will list all machines connected to the network with hostname,
# IP, MAC and IP expiration It is possible to store an XSS in this table by changing hostname
# Checks if you are root
if [ "$(id -u)" != "0" ]; then
echo "Please execute this script as root"
exi ...