First published: Wed Jul 04 2018(Updated: )
TP-Link Archer C1200 1.13 Build 2018/01/24 rel.52299 EU devices have XSS via the PATH_INFO to the /webpages/data URI.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
TP-Link Archer C1200 firmware | =1.13 | |
TP-Link Archer C1200 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-13134 refers to a vulnerability in the TP-Link Archer C1200 1.13 Build 2018/01/24 rel.52299 EU devices that allows for XSS attacks via the PATH_INFO to the /webpages/data URI.
CVE-2018-13134 has a severity keyword of medium and a severity value of 6.1.
CVE-2018-13134 affects TP-Link Archer C1200 firmware version 1.13 by allowing XSS attacks through the PATH_INFO to the /webpages/data URI.
Yes, TP-Link Archer C1200 firmware version 1.13 is vulnerable to CVE-2018-13134.
To fix CVE-2018-13134, it is recommended to update TP-Link Archer C1200 to a patched firmware version when available, and to apply any security patches provided by the manufacturer.