CVE-2026-2855

A vulnerability has been found in D-Link DWR-M960 1.01.07. Affected is the function sub4648F0 of the file /boafrm/formDdns of the component DDNS Settings Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit ha...

CVE-2026-2855 D-Link DWR-M960 DDNS Settings formDdns sub_4648F0 stack-based overflow

A vulnerability has been found in D-Link DWR-M960 1.01.07. Affected is the function sub4648F0 of the file /boafrm/formDdns of the component DDNS Settings Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit ha...

CVE-2025-60672

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDynamicDNSSettings' functionality, where the 'ServerAddress' and 'Hostname' parameters in prog.cgi are stored in NVRAM and later used by rc to...

D-Link DIR-878 安全漏洞

The D-Link DIR-878 is a wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-878 version A1FW101B04.bin, which originates from the unvalidated ServerAddress and Hostname parameters in the SetDynamicDNSSettings function, which can lead to remote command...

CVE-2025-60672

CVE-2025-60672 affects the D-Link DIR-878A1 router (firmware FW101B04.bin). The vulnerability is an unauthenticated command-injection in the SetDynamicDNSSettings function, where ServerAddress and Hostname parameters in prog.cgi are stored in NVRAM and later used by rc to build system commands ex...

The vulnerability of the SetDynamicDNSSettings module in D-Link DIR-853 A1 router microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the SetDynamicDNSSettings module in D-Link DIR-853 A1 router microprogramming software is related to buffer overflow when processing the Password parameter. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

D-Link DIR-853 安全漏洞

The D-Link DIR-853 is a router from China-based AUO D-Link. The D-Link DIR-853 suffers from a buffer overflow vulnerability that stems from the Password parameter in the SetDynamicDNSSettings module not properly handling user input. No details of the vulnerability are provided at this time...

CVE-2025-25744

D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the Password parameter in the SetDynamicDNSSettings module...

CVE-2025-25744

CVE-2025-25744 affects the D-Link DIR-853 A1 with firmware FW1.20B07. The vulnerability, described in the PT-Security entry PT-2025-7102, is a stack-based overflow in the SetDynamicDNSSettings module triggered by the Password parameter, indicating a buffer overflow condition that can be exploited...

D-Link DIR-X3260 Buffer Overflow Vulnerability

The D-Link DIR-X3260 is a mainstream router with Wi-Fi 6 support from D-Link, model DIR-X3260 AX3200. The D-Link DIR-X3260 suffers from a buffer overflow vulnerability, which stems from a stack-based buffer overflow remote code execution vulnerability in prog.cgi SetDynamicDNSSettings, which can ...

D-Link DIR-3040 安全漏洞

The D-Link DIR-3040 is a router from China-based AUO D-Link. It provides the function of connecting to a network. A security vulnerability exists in the D-Link DIR-3040 that stems from a stack-based buffer overflow remote code execution vulnerability in prog.cgi SetDynamicDNSSettings...

PT-2024-1439 · Unknown · Systemk Nvr

Name of the Vulnerable Software and Affected Versions: SystemK NVR versions 2.3.5SK.30084998 and prior Description: The issue is related to a command injection vulnerability in the dynamic domain name system DDNS settings. This vulnerability could allow an attacker to execute arbitrary commands...

The vulnerability of the SetDynamicDNSSettings module in D-Link wireless router microprogramming software, such as DIR-882 and DIR-878, allows a hacker to execute arbitrary code.

The vulnerability of the SetDynamicDNSSettings module in D-Link wireless router microprogramming software, such as DIR-882 and DIR-878, is related to an issue with buffer overflows. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

CVE-2023-45465

Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings...

Command injection

Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings...

CVE-2023-45465

Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings...

CVE-2023-45465

Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings...

NETIS SYSTEMS N3 Command Injection Vulnerability

NETIS SYSTEMS N3 is a router from NETIS SYSTEMS. A security vulnerability exists in the NETIS SYSTEMS N3 Mv2-V1.0.1.865 version, which stems from a command injection vulnerability that includes the ddnsDomainName parameter via dynamic DNS settings...

TP-Link TL-WR340G / TL-WR340GD - Multiple Vulnerabilities

Title: TP-LINK Model No. TL-WR340G/TL-WR340GD - Multiple Vulnerabilities Date: 01.07.14 Vendor: TP-LINK Affected versions: TL-WR340G/TL-WR340GD Tested on: Firmware Version - 4.3.7 Build 090901 Rel.61899n, Hardware Version - WR340G v5 081520C2 at Linux Contact: smash at devilteam.pl Persistent Cro...