ID
VAR-201207-0591
TITLE
TP Link Gateway Multiple HTML Code Injection Vulnerabilities
Trust: 0.6
sources:
CNVD: CNVD-2012-3672
DESCRIPTION
TP Link is a provider specializing in the development, manufacture and sale of network and communication equipment. There are multiple HTML code injection vulnerabilities in the implementation of the TP Link Gateway. Use these vulnerabilities to execute HTML and script code on your device to steal authentication credentials or control the look of your site
Trust: 0.81
sources:
CNVD: CNVD-2012-3672 //
BID: 54396
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2012-3672
AFFECTED PRODUCTS
| vendor: | tp link | model: | gateway | scope: | - | version: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2012-3672
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-201207-165
TYPE
Input Validation Error
Trust: 0.3
sources:
BID: 54396
EXTERNAL IDS
| db: | BID | id: | 54396 | Trust: 1.5 |
| db: | CNVD | id: | CNVD-2012-3672 | Trust: 0.6 |
| db: | CNNVD | id: | CNNVD-201207-165 | Trust: 0.6 |
sources:
CNVD: CNVD-2012-3672 //
BID: 54396 //
CNNVD: CNNVD-201207-165
REFERENCES
| url: | http://www.securityfocus.com/bid/54396 | Trust: 1.2 |
| url: | http://www.tp-link.com/ | Trust: 0.3 |
sources:
CNVD: CNVD-2012-3672 //
BID: 54396 //
CNNVD: CNNVD-201207-165
CREDITS
Ibrahim El-Sayed.
Trust: 0.9
sources:
BID: 54396 //
CNNVD: CNNVD-201207-165
SOURCES
| db: | CNVD | id: | CNVD-2012-3672 |
| db: | BID | id: | 54396 |
| db: | CNNVD | id: | CNNVD-201207-165 |
LAST UPDATE DATE
2022-05-17T01:46:39.022000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2012-3672 | date: | 2012-07-17T00:00:00 |
| db: | BID | id: | 54396 | date: | 2012-07-12T00:00:00 |
| db: | CNNVD | id: | CNNVD-201207-165 | date: | 2012-07-16T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2012-3672 | date: | 2012-07-17T00:00:00 |
| db: | BID | id: | 54396 | date: | 2012-07-12T00:00:00 |
| db: | CNNVD | id: | CNNVD-201207-165 | date: | 2012-07-16T00:00:00 |