CVE-2018-5371

diagping.cmd on D-Link DSL-2640U devices with firmware IM1.00 and ME1.00, and DSL-2540U devices with firmware ME1.00, allows authenticated remote attackers to execute arbitrary OS commands via shell metacharacters in the ipaddr field of an HTTP GET request...

Server side request forgery (ssrf)

diagping.cmd on D-Link DSL-2640U devices with firmware IM1.00 and ME1.00, and DSL-2540U devices with firmware ME1.00, allows authenticated remote attackers to execute arbitrary OS commands via shell metacharacters in the ipaddr field of an HTTP GET request...

CVE-2018-5371

The CVE affects D-Link DSL-2640U (firmware IM_1.00, ME_1.00) and DSL-2540U (firmware ME_1.00). The diag_ping.cmd vulnerability allows authenticated remote attackers to execute arbitrary OS commands via shell metacharacters in the ipaddr field of an HTTP GET request. This is a remote command execu...

CVE-2018-5371

diagping.cmd on D-Link DSL-2640U devices with firmware IM1.00 and ME1.00, and DSL-2540U devices with firmware ME1.00, allows authenticated remote attackers to execute arbitrary OS commands via shell metacharacters in the ipaddr field of an HTTP GET request...

DLink DSL-2640U - Unauthenticated DNS Change Exploit

shell !/bin/bash D-Link ADSL DSL-2640U IM1.00 Unauthenticated Remote DNS Change Exploit Copyright 2017 c Todor Donev https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Description: The vulnerability exist in the web interface, which is accessible without authentication. Onc...

D-Link DSL-2640U - DNS Change

D-Link DSL-2640U - DNS Change !/bin/bash D-Link ADSL DSL-2640U IM1.00 Unauthenticated Remote DNS Change Exploit Copyright 2017 c Todor Donev https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Description: The vulnerability exist in the web interface, which is accessible...

D-Link ADSL DSL-2640U IM_1.00 Unauthenticated Remote DNS Changer

!/bin/bash D-Link ADSL DSL-2640U IM1.00 Unauthenticated Remote DNS Change Exploit Copyright 2017 c Todor Donev https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Description: The vulnerability exist in the web interface, which is accessible without authentication. Once...

D-Link DSL-2640U跨站请求伪造漏洞

D-Link DSL-2640U是一款DSL路由器产品。 D-Link DSL-2640U存在一个跨站请求伪造漏洞，允许远程攻击者构建恶意URI，诱使用户解析，可以目标用户上下文执行恶意操作，如更改设置。 0 D-Link DSL-2640U 目前没有详细解决方案提供： http://www.dlink.com/...

D-Link DSL-2640U PPoE Data Disclosure (ADSL Router)

Exploit for hardware platform in category web applications ================================================================================ || | | || || || |/ | || |/ | | | | | | | | | | | \ | | | | \ ================================================================================ Exploit Title:...

D-Link DSL-2640U (ADSL Router) CSRF Change Admin Password

Exploit for hardware platform in category web applications +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : D-Link DSL-2640U ADSL Router CSRF Vulnerability Change Admin Pssword Date : 20-01-2012 Auth...