CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2013-7321
https://notcve.org/view.php?id=CVE-2013-7321
Cross-site scripting (XSS) vulnerability in D-Link DAP-2253 Access Point (Rev. A1) with firmware before 1.30 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de XSS en el punto de acceso D-Link DAP-2253 (Rev. A1) con firmware anterior a 1.30 permite a atacantes remotos inyectar script Web o HTML arbitrario a través de vectores no especificados. • http://secunia.com/advisories/56022 http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10006 http://www.securityfocus.com/bid/64297 https://exchange.xforce.ibmcloud.com/vulnerabilities/89728 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2013-7320
https://notcve.org/view.php?id=CVE-2013-7320
Cross-site request forgery (CSRF) vulnerability in D-Link DAP-2253 Access Point (Rev. A1) with firmware before 1.30 allows remote attackers to hijack the authentication of administrators for requests that modify configuration settings via unspecified vectors. Vulnerabilidad de CSRF en el punto de acceso D-Link DAP-2253 (Rev. A1) con firmware anterior a 1.30 permite a atacantes remotos secuestrar la autenticación de administradores para solicitudes que modifican la configuración a través de vectores no especificados. • http://secunia.com/advisories/56022 http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10006 http://www.securityfocus.com/bid/64297 • CWE-352: Cross-Site Request Forgery (CSRF) •