CVE-2026-7026 PUBLISHED

A vulnerability was determined in D-Link DGS-3420 1.50.018. This issue affects some unknown processing of the component System Information Settings Page. This manipulation of the argument System Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.

• Fergod (VulDB User) reporter
• VulDB Vulnerability Moderation Team coordinator

• VDB-359606 | D-Link DGS-3420 System Information Settings cross site scripting
• VDB-359606 | CTI Indicators (IOB, IOC, TTP, IOA)
• Submit #797877 | D-Link DGS-3420-28TC 1.50.018 Cross Site Scripting
• https://www.dlink.com/

• Cross Site Scripting CWE
• Code Injection CWE