VYPR
Unrated severityNVD Advisory· Published Dec 6, 2004· Updated Jun 16, 2026

CVE-2004-0615

CVE-2004-0615

Description

Cross-site scripting (XSS) vulnerability in D-Link DI-614+ SOHO router running firmware 2.30, and DI-704 SOHO router running firmware 2.60B2, and DI-624, allows remote attackers to inject arbitrary script or HTML via the DHCP HOSTNAME option in a DHCP request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • Dlink/DI-614+2 versions
    cpe:2.3:h:d-link:di-614\+:2.30:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:h:d-link:di-614\+:2.30:*:*:*:*:*:*:*
    • (no CPE)range: = firmware 2.30
  • Dlink/Di 6242 versions
    cpe:2.3:h:dlink:di-624:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:h:dlink:di-624:*:*:*:*:*:*:*:*range: <=1.28
    • (no CPE)
  • Dlink/DI-7042 versions
    cpe:2.3:h:d-link:di-704p:2.60b2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:h:d-link:di-704p:2.60b2:*:*:*:*:*:*:*
    • (no CPE)range: = firmware 2.60B2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.