CVE-2024-33111

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-33111
D-Link DIR-845L router <=v1.01KRb03 is vulnerable to Cross Site Scripting (XSS) via /htdocs/webinc/js/bsc_sms_inbox.php.
CVSS

No CVSS.

References
Link Resource
https://github.com/yj94/Yj_learning/blob/main/Week16/D-LINK-POC.md Broken Link
https://github.com/yj94/Yj_learning/blob/main/Week16/D-LINK-POC.md Broken Link
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dlink:dir-845l_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dir-845l:-:*:*:*:*:*:*:*
History

21 May 2025, 13:02

Type Values Removed Values Added
First Time Dlink dir-845l Firmware
Dlink
Dlink dir-845l
CPE cpe:2.3:o:dlink:dir-845l_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:dlink:dir-845l:-:*:*:*:*:*:*:*
References () https://github.com/yj94/Yj_learning/blob/main/Week16/D-LINK-POC.md - () https://github.com/yj94/Yj_learning/blob/main/Week16/D-LINK-POC.md - Broken Link

06 May 2024, 15:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-05-06 15:15

Updated : 2025-05-21 13:02

NVD link : CVE-2024-33111

Mitre link : CVE-2024-33111

JSON object : View

Products Affected

dlink

  • dir-845l
  • dir-845l_firmware
CWE

No CWE.