Medium severity6.1NVD Advisory· Published Aug 25, 2018· Updated Jun 17, 2026
CVE-2018-15874
CVE-2018-15874
Description
Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status -> Active Client Table" page via the hostname field in a DHCP request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- github.com/reevesrs24/cve/blob/master/D-Link_DIR-615/xss_DHCP/dlink_dir615_xss_dhcp.mdnvdThird Party Advisory
News mentions
0No linked articles in our index yet.