Medium severity6.1NVD Advisory· Published Aug 25, 2018· Updated Jun 17, 2026
CVE-2018-15875
CVE-2018-15875
Description
Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows attackers to inject JavaScript into the router's admin UPnP page via the description field in an AddPortMapping UPnP SOAP request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- github.com/reevesrs24/cve/blob/master/D-Link_DIR-615/xss_UPnP/dlink_dir615_xss_upnp.mdnvdThird Party Advisory
News mentions
0No linked articles in our index yet.