Vulnerabilities (CVE)

Filtered by vendor D-link Subscribe

Filtered by product Central Wifimanager

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-15516	1 D-link	1 Central Wifimanager	2019-02-22	3.5 LOW	5.8 MEDIUM
The FTP service on D-Link Central WiFiManager CWM-100 1.03 r0098 devices allows remote attackers to conduct a PORT command bounce scan via port 8000, resulting in SSRF.
CVE-2018-17443	1 D-link	1 Central Wifimanager	2018-11-23	4.3 MEDIUM	6.1 MEDIUM
An issue was discovered on D-Link Central WiFi Manager before v 1.03r0100-Beta1. The 'sitename' parameter of the UpdateSite endpoint is vulnerable to stored XSS.
CVE-2018-17441	1 D-link	1 Central Wifimanager	2018-11-21	4.3 MEDIUM	6.1 MEDIUM
An issue was discovered on D-Link Central WiFi Manager before v 1.03r0100-Beta1. The 'username' parameter of the addUser endpoint is vulnerable to stored XSS.