Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.13 views

EUVD-2019-2727

Malware in sbrugna...

4.8CVSS5AI score0.01515EPSS
Exploits5References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-1274

Malware in sbrugna...

7.8CVSS6.4AI score0.02497EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2019/07/04 12:0 a.m.3 views

The vulnerability of D-Link DI-524 router’s microprogramming software lies in the lack of protective measures for the website structure, allowing attackers to inject arbitrary JavaScript code into the device’s web interface pages.

The vulnerability of D-Link DI-524 router’s microprogram code exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to inject JavaScript code into the device’s web interface pages. The web configuration files,...

4.8CVSS5.6AI score0.01515EPSS
Exploits5References5
NVD
NVD
added 2019/04/18 6:29 p.m.32 views

CVE-2019-11017

On D-Link DI-524 V2.06RU devices, multiple Stored and Reflected XSS vulnerabilities were found in the Web Configuration: /spap.htm, /smap.htm, and /cgi-bin/smap, as demonstrated by the cgi-bin/smap RC parameter...

4.8CVSS5.3AI score0.01515EPSS
Exploits5References2
Prion
Prion
added 2019/04/18 6:29 p.m.16 views

Cross site scripting

On D-Link DI-524 V2.06RU devices, multiple Stored and Reflected XSS vulnerabilities were found in the Web Configuration: /spap.htm, /smap.htm, and /cgi-bin/smap, as demonstrated by the cgi-bin/smap RC parameter...

3.5CVSS5.2AI score0.01515EPSS
Exploits5References2Affected Software1
Check Point Advisories
Check Point Advisories
added 2019/04/16 12:0 a.m.1 views

D-Link DI-524 Cross-Site Scripting (CVE-2019-11017)

A cross-site scripting vulnerability exists in D-Link DI-524. Successful exploitation of this vulnerability could allow remote attackers to inject arbitrary web script into the affected system...

3.5CVSS4.9AI score0.01515EPSS
Exploits5
0day.today
0day.today
added 2019/04/10 12:0 a.m.54 views

D-Link DI-524 V2.06RU - Multiple Cross-Site Scripting Vulnerability

Exploit for hardware platform in category web applications Exploit Title: Multiple Stored and Reflected XSS vulnerabilities in D-Link DI-524 Exploit Author: Semen Alexandrovich Lyhin https://www.linkedin.com/in/semenlyhin/ Vendor Homepage: https://www.dlink.com Version: D-Link DI-524 - V2.06RU CV...

0.01515EPSS
Exploits5
exploitpack
exploitpack
added 2019/04/10 12:0 a.m.31 views

D-Link DI-524 V2.06RU - Multiple Cross-Site Scripting

D-Link DI-524 V2.06RU - Multiple Cross-Site Scripting Exploit Title: Multiple Stored and Reflected XSS vulnerabilities in D-Link DI-524 Date: April 6, 2019 Exploit Author: Semen Alexandrovich Lyhin https://www.linkedin.com/in/semenlyhin/ Vendor Homepage: https://www.dlink.com Version: D-Link DI-5...

3.5CVSS5.1AI score0.01515EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/04/10 12:0 a.m.58 views

D-Link DI-524 V2.06RU - Multiple Cross-Site Scripting

Exploit Title: Multiple Stored and Reflected XSS vulnerabilities in D-Link DI-524 Date: April 6, 2019 Exploit Author: Semen Alexandrovich Lyhin https://www.linkedin.com/in/semenlyhin/ Vendor Homepage: https://www.dlink.com Version: D-Link DI-524 - V2.06RU CVE : CVE-2019-11017 To re-create Reflect...

4.8CVSS5.1AI score0.01515EPSS
Exploits5
Packet Storm
Packet Storm
added 2019/04/10 12:0 a.m.39 views

D-Link DI-524 2.06RU Cross Site Scripting

Exploit Title: Multiple Stored and Reflected XSS vulnerabilities in D-Link DI-524 Date: April 6, 2019 Exploit Author: Semen Alexandrovich Lyhin https://www.linkedin.com/in/semenlyhin/ Vendor Homepage: https://www.dlink.com Version: D-Link DI-524 - V2.06RU CVE : CVE-2019-11017 To re-create Reflect...

0.01515EPSS
Exploits5
Prion
Prion
added 2017/03/06 6:59 a.m.17 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities on the D-Link DI-524 Wireless Router with firmware 9.01 allow remote attackers to 1 change the admin password, 2 reboot the device, or 3 possibly have unspecified other impact via crafted requests to CGI programs...

8.5CVSS8.6AI score0.03962EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2017/03/06 6:59 a.m.3 views

CVE-2017-5633

Multiple cross-site request forgery CSRF vulnerabilities on the D-Link DI-524 Wireless Router with firmware 9.01 allow remote attackers to 1 change the admin password, 2 reboot the device, or 3 possibly have unspecified other impact via crafted requests to CGI programs...

8CVSS5.8AI score0.03962EPSS
Exploits1References2
NVD
NVD
added 2017/03/06 6:59 a.m.25 views

CVE-2017-5633

Multiple cross-site request forgery CSRF vulnerabilities on the D-Link DI-524 Wireless Router with firmware 9.01 allow remote attackers to 1 change the admin password, 2 reboot the device, or 3 possibly have unspecified other impact via crafted requests to CGI programs...

8.5CVSS8.6AI score0.03962EPSS
Exploits1References2
CVE
CVE
added 2017/03/06 6:11 a.m.63 views

CVE-2017-5633

CVE-2017-5633 describes multiple CSRF vulnerabilities affecting the D-Link DI-524 Wireless Router running firmware 9.01. The issue enables remote attackers to perform actions via crafted requests to CGI programs, including changing the admin password and rebooting the device (and possibly other i...

8.5CVSS8.5AI score0.03962EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2017/03/06 12:0 a.m.6 views

PT-2017-16633 · D Link · D-Link Di-524 Wireless Router

Name of the Vulnerable Software and Affected Versions: D-Link DI-524 Wireless Router version 9.01 Description: The issue affects the D-Link DI-524 Wireless Router, allowing remote attackers to perform certain actions due to multiple cross-site request forgery CSRF vulnerabilities. These actions...

8.5CVSS8.2AI score0.03962EPSS
Exploits1References4
Prion
Prion
added 2008/03/10 5:44 p.m.11 views

Buffer overflow

Multiple buffer overflows in the web interface on the D-Link DI-524 router allow remote attackers to cause a denial of service device crash or possibly have unspecified other impact via 1 a long username or 2 an HTTP header with a large name and an empty value...

7.8CVSS8.3AI score0.02497EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2008/03/10 12:0 a.m.4 views

PT-2008-2858 · D Link · D-Link Di-524

Name of the Vulnerable Software and Affected Versions: D-Link DI-524 router affected versions not specified Description: The issue is related to multiple buffer overflows in the web interface of the router. These buffer overflows can be triggered by a remote attacker sending a long username or an...

7.8CVSS7.1AI score0.02497EPSS
Exploits0References6
Rows per page
Query Builder