CVE-2013-7054

D-Link DIR-100 4.03B07: cli.cgi XSS...

Cross site scripting

D-Link DIR-100 4.03B07: cli.cgi XSS...

Information disclosure

D-Link DIR-100 4.03B07 has PPTP and poe information disclosure...

CVE-2013-7055

D-Link DIR-100 4.03B07 has PPTP and poe information disclosure...

CVE-2013-7055

D-Link DIR-100 vulnerable on firmware 4.03B07 (hardware rev D1) to an information disclosure issue affecting PPTP and PoE data (CVE-2013-7055). This vulnerability is network-facing with risk of exposing sensitive information; vendor released a patched firmware (4.03B13) addressing the information...

CVE-2013-7054

CVE-2013-7054 affects D-Link DIR-100 with firmware 4.03B07 in the cli.cgi component, enabling Cross-Site Scripting (XSS). Public details from multiple sources confirm the issue and indicate a vendor fix to 4.03B13; applying the patched firmware is recommended. CVSS vectors show network-remote acc...

CVE-2013-7054

D-Link DIR-100 4.03B07: cli.cgi XSS...

CVE-2013-7053

D-Link DIR-100 4.03B07: cli.cgi CSRF...

CVE-2013-7053

CVE-2013-7053 concerns a CSRF vulnerability in the CLI CGI endpoint (cli.cgi) of the D-Link DIR-100 router with firmware 4.03B07. The intrinsic cause is cross-site request forgery to that endpoint, enabling an attacker to induce state-changing requests without user interaction. Public references ...

PT-2020-7567 · D Link · D-Link Dir-100

Name of the Vulnerable Software and Affected Versions: D-Link DIR-100 version 4.03B07 Description: The issue is related to an XSS vulnerability in the cli.cgi module. Recommendations: For D-Link DIR-100 version 4.03B07, update to a newer version that contains a fix for this issue...