D-Link: >> Dir-600m Firmware Security Vulnerabilities
On D-Link DIR-600M devices before C1_v3.05ENB01_beta_20170306, XSS was found in the form2userconfig.cgi username parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-07-20
CSRF exists on D-Link DIR-600M Rev. Cx devices before v3.05ENB01_beta_20170306. This can be used to bypass authentication and insert XSS sequences or possibly have unspecified other impact.
CVSS Score
8.8
EPSS Score
0.0
Published
2017-03-22