CVE-2012-6316

Currently unrated

Key Information:

Vendor: Tp-link
Status: Tl-wr841n Firmware; Tl-wr841n
Vendor: CVE Published:; 30 September 2014

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the TP-LINK TL-WR841N router with firmware 3.13.9 Build 120201 Rel.54965n and earlier allow remote administrators to inject arbitrary web script or HTML via the (1) username or (2) pwd parameter to userRpm/NoipDdnsRpm.htm.

References

http://www.securityfocus.com/bid/56602

vdb-entryx_refsource_BID

http://seclists.org/fulldisclosure/2012/Dec/93

mailing-listx_refsource_FULLDISC

Timeline

Vulnerability published
Sep 30, 2014
Vulnerability Reserved
Dec 6, 2012