103 matches found
CVE-2023-4542
A vulnerability was found in D-Link DAR-8000-10 up to 20230809. It has been classified as critical. This affects an unknown part of the file /app/sys1.php. The manipulation of the argument cmd with the input id leads to os command injection. It is possible to initiate the attack remotely. The...
CVE-2023-4711
A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230819. Affected by this issue is some unknown functionality of the file /log/decodmail.php. The manipulation of the argument file leads to os command injection. The attack may be launched remotely. Th...
EUVD-2023-57489
Malicious code in bioql PyPI...
EUVD-2024-44297
Malicious code in bioql PyPI...
EUVD-2023-57491
Malicious code in bioql PyPI...
CVE-2024-4699
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230922. This issue affects some unknown processing of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. The attack may be initiated...
CVE-2023-5153
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, was found in D-Link DAR-8000 up to 20151231. This affects an unknown part of the file /Tool/querysql.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2023-5151
UNSUPPORTED WHEN ASSIGNED A vulnerability classified as critical was found in D-Link DAR-8000 up to 20151231. Affected by this vulnerability is an unknown functionality of the file /autheditpwd.php. The manipulation of the argument hidid leads to sql injection. The attack can be launched remotely...
VulnCheck KEV: CVE-2023-5148
UNSUPPORTED WHEN ASSIGNED A vulnerability was found in D-Link DAR-7000 and DAR-8000 up to 20151231. It has been declared as critical. This vulnerability affects unknown code of the file /Tool/uploadfile.php. The manipulation of the argument fileupload leads to unrestricted upload. The...
Vulnerability of the D-Link DAR-7000 and DAR-8000 router microprogramming system’s /firewall/urlblist.php script, allowing a hacker to execute arbitrary code
The vulnerability of the D-Link DAR-7000 and DAR-8000 router microprogramming systems’ /firewall/urlblist.php script is related to the unlimited download of malicious files. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
DAR-8000-10 Deserialization Vulnerability in AUO Electronic Devices (Shanghai) Co.
DAR-8000-10 is the Internet Behavior Audit Gateway from China AUO D-Link. AUO DAR-8000-10 20230922 and earlier versions have a deserialization vulnerability that originates from the unsafe deserialization of the parameter sql of the file /importhtml.php when receiving serialized data submitted by...
The vulnerability in the script interface/sysmanage/licenseauthorization.php of the D-Link DAR-7000 and DAR-8000 router microsystems allows a hacker to execute arbitrary code.
The vulnerability in the interface/sysmanage/licenseauthorization.php script of the D-Link DAR-7000 and DAR-8000 router microsystems lies in the ability to download files of a malicious nature without limitation. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...
Vulnerability of the /useratte/resmanage.php script of the D-Link DAR-7000 and DAR-8000 routers, allowing attackers to execute arbitrary commands
The vulnerability of the D-Link DAR-7000 and DAR-8000 router microprogramming systems exists due to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
Vulnerability of the /user/onlineuser.php script in D-Link DAR-7000 and DAR-8000 router microprogramming software, allowing a hacker to execute arbitrary code
The vulnerability of the /user/onlineuser.php script in D-Link’s router microprogramming software DAR-7000 and DAR-8000 is related to the unlimited loading of dangerous files. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
PT-2024-3697 · D Link · D-Link Dar-8000 +1
Name of the Vulnerable Software and Affected Versions: D-Link DAR-7000 versions prior to the latest supported version D-Link DAR-8000 versions prior to the latest supported version Description: The issue is related to an unrestricted file upload vulnerability in the /firewall/urlblist.php file of...
PT-2024-3696 · D Link · D-Link Dar-7000-40 +2
Name of the Vulnerable Software and Affected Versions: D-Link DAR-7000-40 version V31R02B1413C D-Link DAR-7000 affected versions not specified D-Link DAR-8000 affected versions not specified Description: A critical issue affects an unknown part of the file /url/url.php, allowing for unrestricted...
PT-2024-3651 · D Link · D-Link Dar-7000-40 +2
Name of the Vulnerable Software and Affected Versions: D-Link DAR-7000-40 version V31R02B1413C D-Link DAR-7000 affected versions not specified D-Link DAR-8000 affected versions not specified Description: A critical vulnerability was found in the D-Link DAR-7000 and DAR-8000 routers, affecting an...
CVE-2024-4699
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230922. This issue affects some unknown processing of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. The attack may be initiated...
CVE-2024-4699
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230922. This issue affects some unknown processing of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. The attack may be initiated...
D-Link DAR-8000 代码问题漏洞
DAR-8000-10 is the Internet Behavior Audit Gateway from China AUO D-Link. AUO DAR-8000-10 20230922 and earlier versions have a deserialization vulnerability that originates from the unsafe deserialization of the parameter sql of the file /importhtml.php when receiving serialized data submitted by...