Lucene search
K

7 matches found

NVD
NVD
added 2025/12/30 9:15 p.m.4 views

CVE-2025-15357

A vulnerability was found in D-Link DI-7400G+ 19.12.25A1. This affects an unknown function of the file /mspinfo.htm?flag=cmd. The manipulation of the argument cmd results in command injection. The attack can be launched remotely. The exploit has been made public and could be used...

9.8CVSS0.03801EPSS
Exploits1References5
OSV
OSV
added 2025/12/30 9:15 p.m.3 views

CVE-2025-15357

A vulnerability was found in D-Link DI-7400G+ 19.12.25A1. This affects an unknown function of the file /mspinfo.htm?flag=cmd. The manipulation of the argument cmd results in command injection. The attack can be launched remotely. The exploit has been made public and could be used...

9.8CVSS5.6AI score0.03801EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/12/30 9:2 p.m.6 views

CVE-2025-15357 D-Link DI-7400G+ msp_info.htm command injection

A vulnerability was found in D-Link DI-7400G+ 19.12.25A1. This affects an unknown function of the file /mspinfo.htm?flag=cmd. The manipulation of the argument cmd results in command injection. The attack can be launched remotely. The exploit has been made public and could be used...

6.5CVSS6.7AI score0.03801EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/12/30 12:0 a.m.6 views

D-Link DI-7400G+ 命令注入漏洞

The D-Link DI-7400G+ is a router from China AUO D-Link. A command injection vulnerability exists in the D-Link DI-7400G+ version 19.12.25A1, which stems from incorrect manipulation of the parameter cmd in the file /mspinfo.htm?flag=cmd, which can lead to command injection...

9.8CVSS6.9AI score0.03801EPSS
Exploits1References5
GithubExploit
GithubExploit
added 2025/12/29 4:7 p.m.214 views

Exploit for Command Injection in Dlink Di-7400G\+_Firmware

CVE-2025-57105 D-Link DI-7400G+ Command Injection Ove...

9.8CVSS7.9AI score0.0288EPSS
Exploits3
NVD
NVD
added 2025/09/01 8:15 a.m.4 views

CVE-2025-9769

A security flaw has been discovered in D-Link DI-7400G+ 19.12.25A1. Affected is the function sub478D28 of the file /mngplatform.asp. The manipulation of the argument addr with the input echo 12345 poc.txt results in command injection. An attack on the physical device is feasible. The exploit has...

6.2CVSS0.25875EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/09/01 12:0 a.m.3 views

D-Link DI-7400G+ 安全漏洞

The D-Link DI-7400G+ is a router from China-based AUO D-Link. A security vulnerability exists in the D-Link DI-7400G+ version 19.12.25A1, which originates from a command injection due to incorrect operation of the parameter addr in the file /mngplatform.asp...

6.2CVSS5.3AI score0.25875EPSS
Exploits1References7
Rows per page
Query Builder