关键漏洞信息 Title: D-Link DSL6641K version N8.TR069.20131126 Cross Site Scripting Description: A Stored Cross-Site Scripting (XSS) vulnerability has been discovered in the D-Link DSL6641K router's configuration page ( ). The vulnerability occurs due to improper handling of user input in the field, which is stored in the router's configuration without proper sanitization. An attacker can inject a malicious JavaScript payload into the field, leading to session hijacking, credential theft, or unauthorized actions on the web interface. Source: https://tzh00203.notion.site/D-Link-DSL6641K-version-N8-TR069-20131126-XSS-via-ad_virtual_server_vdsl-Configuration-2eeb5c52018a805d97adfb23dfec39c9?source=copy_link User: tian (UID 93438) Submission Date: 01/20/2026 03:40 AM Moderation Date: 01/30/2026 04:48 PM Status: Accepted VulDB Entry: 343510 [D-Link DSL-6641K N8.TR069.20131126 Web Interface ad_virtual_server_vdsl Name cross site scripting] Points: 17