CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

49 matches found

D-LINK DIR-845L bsc_sms_inbox.php file - Information Disclosure

D-LINK DIR-845L DEVICE.ACCOUNT" - "" condition: and - type: status status: - 200 digest: 4a0a00473045022100bf198c7c66fd8a2ba3c059386bb91507f0a8b09f787b913630156285ae7349f80...

5.3CVSS5.8AI score0.03419EPSS

Exploits1References2

RedhatCVE•added 2025/05/23 10:2 a.m.•6 views

CVE-2024-29385

DIR-845L router = v1.01KRb03 has an Unauthenticated remote code execution vulnerability in the cgibin binary via soapcgimain function...

9CVSS7.9AI score0.01557EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 10:1 a.m.•4 views

CVE-2024-29366

A command injection vulnerability exists in the cgibin binary in DIR-845L router firmware = v1.01KRb03...

8.8CVSS7.5AI score0.02408EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 7:59 a.m.•6 views

CVE-2024-33113

D-LINK DIR-845L =v1.01KRb03 is vulnerable to Information disclosurey via bscsmsinbox.php...

5.3CVSS6.8AI score0.03419EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 7:59 a.m.•7 views

CVE-2024-33111

D-Link DIR-845L router =v1.01KRb03 is vulnerable to Cross Site Scripting XSS via /htdocs/webinc/js/bscsmsinbox.php...

5.4CVSS5.3AI score0.00802EPSS

Exploits1References1

VulnCheck KEV•added 2024/12/26 12:0 a.m.•3 views

VulnCheck KEV: CVE-2024-33112

D-Link DIR-845L v1.01KRb03 and before is vulnerable to an operating system command injection vulnerability...

7.5CVSS7.3AI score0.06457EPSS

Exploits1References1

OpenVAS•added 2024/08/09 12:0 a.m.•20 views

D-Link DIR-845L Devices Multiple Vulnerabilities (May 2024)

D-Link DIR-845L devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.1CVSS7.1AI score0.06457EPSS

Exploits5References4

GithubExploit•added 2024/06/25 2:54 p.m.•70 views

Exploit for Cross-site Scripting in Dlink Dir-845L_Firmware

CVE-2024-33111 D-Link DIR-845L routers version 1.01KRb03 and b...

5.4CVSS6.5AI score0.00802EPSS

Exploits1

BDU FSTEC•added 2024/05/13 12:0 a.m.•3 views

The vulnerability in the script htdocs/webinc/js/bsc_sms_inbox.php of the D-Link DIR-845L router’s microprogramming software allows a attacker to perform XSS attacks.

The vulnerability in the script htdocs/webinc/js/bscsmsinbox.php of the D-Link DIR-845L router operating system allows an attacker to exploit the system by manipulating the $GET"Treturn" parameter during page processing. Exploiting this vulnerability enables a remote attacker to perform XSS attac...

5CVSS5.5AI score0.00802EPSS

Exploits1References3Affected Software1

BDU FSTEC•added 2024/05/13 12:0 a.m.•3 views

The vulnerability in the getcfg.php script of D-Link DIR-845L router microprogramming software allows a hacker to bypass security restrictions and gain increased privileges.

The vulnerability in the getcfg.php script of D-Link DIR-845L router microprogramming software exposes a flaw in access control when processing the $GLOBALS"AUTHORIZEDGROUP" parameter. Exploiting this vulnerability allows an attacker to bypass security restrictions and enhance their privileges...

5.8CVSS5.5AI score0.00741EPSS

Exploits0References3Affected Software1

BDU FSTEC•added 2024/05/13 12:0 a.m.•2 views

The vulnerability in the getcfg.php script of D-Link DIR-845L router microprogramming software allows a hacker to gain unauthorized access to protected information.

The vulnerability in the getcfg.php script of D-Link DIR-845L router microprogramming software allows an attacker to gain unauthorized access to protected information when processing the $file parameter. Exploiting this vulnerability can enable a remote attacker to obtain unauthorized access to...

3CVSS5.5AI score0.03419EPSS

Exploits1References3Affected Software1

CNVD•added 2024/05/10 12:0 a.m.•6 views

D-Link DIR-845L Command Execution Vulnerability

The D-Link DIR-845L is a wireless router from China-based AUO D-Link. The D-Link DIR-845L suffers from a command execution vulnerability that can be exploited by an attacker to execute arbitrary commands on the system by sending a specially crafted request...

7.5CVSS7.7AI score0.06457EPSS

Exploits1References1

CNVD•added 2024/05/10 12:0 a.m.•7 views

D-Link DIR-845L Cross-Site Scripting Vulnerability

The D-Link DIR-845L is a wireless router from China-based AUO D-Link. A cross-site scripting vulnerability exists in D-Link DIR-845L v1.01KRb03 and earlier versions, which can be exploited by an attacker to execute script in the victim's web browser using a specially crafted URL...

5.4CVSS6.2AI score0.00802EPSS

Exploits1References1