Reflected Cross-Site Scripting in D-Link DIR-X1860 Router
CVE-2021-41445
6.1MEDIUM
What is CVE-2021-41445?
A reflected cross-site scripting vulnerability exists in the web application of D-Link DIR-X1860 routers prior to version v1.10WWB09_Beta. This flaw allows remote attackers to execute arbitrary scripts on the devices of unknowing victims by crafting a malicious URL. When a user clicks on the link, the injected script runs in their browser context, potentially leading to session hijacking, data theft, or other malicious activities.