Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Reflected XSS Vulnerability on TP-Link Archer C60
Vulnerability Description
User-controlled input is reflected into the HTML output without proper encoding on TP-Link Archer C60 v3, allowing arbitrary JavaScript execution via a crafted URL. An attacker could run script in the device web UI context, potentially enabling credential theft, session hijacking, or unintended actions if a privileged user is targeted.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
TP-Link Archer C60 安全漏洞
Vulnerability Description
TP-Link Archer C60是中国普联(TP-Link)公司的一个无线路由器。 TP-Link Archer C60 v3存在安全漏洞,该漏洞源于用户输入未经适当编码即反射到HTML输出中,可能导致通过特制URL执行任意JavaScript代码,进而引发凭据窃取或会话劫持。
CVSS Information
N/A
Vulnerability Type
N/A