CVE-2022-50596 D-Link DIR-1260 <= v1.20B05 GetDeviceSettings Unauthenticated Command Injection

D-Link DIR-1260 Wi-Fi router firmware versions up to and including v1.20B05 contain a command injection vulnerability within the web management interface that allows for unauthenticated attackers to execute arbitrary commands on the device with root privileges. The flaw specifically exists within...

CVE-2022-50596 D-Link DIR-1260 <= v1.20B05 GetDeviceSettings Unauthenticated Command Injection

D-Link DIR-1260 Wi-Fi router firmware versions up to and including v1.20B05 contain a command injection vulnerability within the web management interface that allows for unauthenticated attackers to execute arbitrary commands on the device with root privileges. The flaw specifically exists within...

CVE-2022-50596

CVE-2022-50596 affects D-Link DIR-1260 router firmware up to v1.20B05. The vulnerability is a pre-auth, command-injection flaw in the web management interface, exploitable via SetDest/Dest/Target arguments to the GetDeviceSettings form. Impact is unauthenticated command execution with root privil...

PT-2025-45371

D-Link DIR-1260 Wi-Fi router firmware versions up to and including v1.20B05 contain a command injection vulnerability within the web management interface that allows for unauthenticated attackers to execute arbitrary commands on the device with root privileges. The flaw specifically exists within...

CVE-2023-34279

D-Link DIR-2150 GetDeviceSettings Target Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2150 routers. Authentication is not required to exploit this vulnerability. The...

D-Link DIR-2150 安全漏洞

The D-Link DIR-2150 is a wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-2150 that stems from a GetDeviceSettings target command injection remote code execution vulnerability...

PT-2024-3333 · D Link · D-Link Dir-845L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-845L router version 1.01KRb03 and before Description: The issue is related to a command injection vulnerability via the hnap main function. This vulnerability is associated with the failure to neutralize special elements used in th...

D-Link DIR-645 Router Remote Code Execution Vulnerability

D-Link DIR-645 Wired/Wireless Router allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface...

D-Link DIR-645 Wired/Wireless Router Stack Buffer Overflow Vulnerability

The D-Link DIR-645 is an adjustable wireless transmit power router product from AUO D-Link. A stack buffer overflow vulnerability exists in the D-Link DIR-645 Wired/Wireless Router Rev. Ax. The vulnerability can be exploited by a remote attacker to execute arbitrary code with the help of a very...

PT-2015-1278 · D Link · D-Link Dir-645

Name of the Vulnerable Software and Affected Versions: D-Link DIR-645 Wired/Wireless Router Rev. Ax versions 1.04b12 and earlier Description: The issue allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the "HNAP interface". This is a result of a...

CVE-2014-3936

Stack-based buffer overflow in the dohnap function in www/mycgi.cgi in D-Link DSP-W215 Rev. A1 with firmware 1.01b06 and earlier, DIR-505 with firmware before 1.08b10, and DIR-505L with firmware 1.01 and earlier allows remote attackers to execute arbitrary code via a long Content-Length header in...