CVE-2025-60672

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDynamicDNSSettings' functionality, where the 'ServerAddress' and 'Hostname' parameters in prog.cgi are stored in NVRAM and later used by rc to...

CVE-2025-60672

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDynamicDNSSettings' functionality, where the 'ServerAddress' and 'Hostname' parameters in prog.cgi are stored in NVRAM and later used by rc to...

PT-2025-46885

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDynamicDNSSettings' functionality, where the 'ServerAddress' and 'Hostname' parameters in prog.cgi are stored in NVRAM and later used by rc to...

EUVD-2025-4133

Malicious code in bioql PyPI...

EUVD-2022-49367

Malicious code in bioql PyPI...

CVE-2022-46563

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module...

The vulnerability of the SetDynamicDNSSettings module in D-Link DIR-853 A1 router microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the SetDynamicDNSSettings module in D-Link DIR-853 A1 router microprogramming software is related to buffer overflow when processing the Password parameter. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

D-Link DIR-853 SetDynamicDNSSettings Module Buffer Overflow Vulnerability

The D-Link DIR-853 is a router from China-based AUO D-Link. The D-Link DIR-853 suffers from a buffer overflow vulnerability that stems from the Password parameter in the SetDynamicDNSSettings module not properly handling user input. No details of the vulnerability are provided at this time...

CVE-2025-25744

D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the Password parameter in the SetDynamicDNSSettings module...

CVE-2023-51613 D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this...

CVE-2023-51613 D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this...

CVE-2023-51613

CVE-2023-51613 affects the D-Link DIR-X3260 router, specifically the prog.cgi SetDynamicDNSSettings handler. The root cause is a stack-based buffer overflow in the HNAP path processed by lighttpd on ports 80/443 due to insufficient input validation of a user-supplied string. This allows network-a...

CVE-2023-41216 D-Link DIR-3040 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this...

D-Link DIR-X3260 安全漏洞

The D-Link DIR-X3260 is a mainstream router with Wi-Fi 6 support from D-Link, model DIR-X3260 AX3200. The D-Link DIR-X3260 suffers from a buffer overflow vulnerability, which stems from a stack-based buffer overflow remote code execution vulnerability in prog.cgi SetDynamicDNSSettings, which can ...

D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the prog.cgi binary, which handles HNAP requests made to the lighttpd...

The vulnerability of the SetDynamicDNSSettings function in the prog.cgi file of the D-Link DIR-3040 wireless router’s microprogramming system allows a hacker to execute arbitrary code.

The vulnerability of the SetDynamicDNSSettings function in the prog.cgi file of the D-Link DIR-3040 wireless router operating system exists due to the lack of proper validation of the string provided by the user before it is copied into the fixed-length stack-based buffer. Exploiting this...

CVE-2022-46563

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module...

CVE-2022-46563

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module...

Stack overflow

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module...

CVE-2022-46563

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module...