Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2018-15517
HistoryJan 31, 2019 - 7:29 p.m.

Security feature bypass

2019-01-3119:29:00
PRIOn knowledge base
www.prio-n.com
5

8.6 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.7%

JSON

The MailConnect feature on D-Link Central WiFiManager CWM-100 1.03 r0098 devices is intended to check a connection to an SMTP server but actually allows outbound TCP to any port on any IP address, leading to SSRF, as demonstrated by an index.php/System/MailConnect/host/127.0.0.1/port/22/secure/ URI.

CPENameOperatorVersion
central_wifimanagereq1.3 r98

Related

packetstorm 1
nuclei 1
zdt 1
cvelist 1
cve 1
nvd 1
packetstorm
packetstorm
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Server-Side Request Forgery
2018-11-09 00:00:00
nuclei
nuclei
D-Link Central WifiManager - Server-Side Request Forgery
2021-08-04 05:25:54
zdt
zdt
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Server-Side Request Forgery Vulnerability
2018-11-09 00:00:00
cvelist
cvelist
CVE-2018-15517
2019-01-31 19:00:00
cve
cve
CVE-2018-15517
2019-01-31 19:29:00
nvd
nvd
CVE-2018-15517
2019-01-31 19:29:00

8.6 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.7%

JSON
Related for PRION:CVE-2018-15517
packetstorm1nuclei1zdt1cvelist1cve1nvd1