CVE-2024-51024

D-Link DIR823G 1.0.2B05 was discovered to contain a command injection vulnerability via the HostName parameter in the SetWanSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...

D-Link DIR-823G 安全漏洞

The D-Link DIR-823G is a wireless router from China's AUO D-Link. The D-Link DIR-823G version 1.0.2B05 suffers from a command injection vulnerability that stems from the HostName parameter in the SetWanSettings function failing to properly filter constructed command special characters, commands,...

D-Link DIR-3040 安全漏洞

The D-Link DIR-3040 is a router from China-based AUO D-Link. It provides the function of connecting to a network. A security vulnerability exists in the D-Link DIR-3040 that stems from a stack-based buffer overflow remote code execution vulnerability in prog.cgi SetWanSettings...

D-Link DIR-882 缓冲区错误漏洞

The D-Link DIR-882 is a wireless router from China-based AUO D-Link. A buffer error vulnerability exists in the D-Link DIR-882 DIR882A1FW130B06 version, which stems from the discovery of a contained stack overflow vulnerability via the Password parameter in the SetWanSettings module...

CVE-2019-13482

An issue was discovered on D-Link DIR-818LW devices with firmware 2.06betab01. There is a command injection in HNAP1 exploitable with Authentication via shell metacharacters in the Type field to SetWanSettings...

CVE-2019-12787

An issue was discovered on D-Link DIR-818LW devices from 2.05.B03 to 2.06B01 BETA. There is a command injection in HNAP1 SetWanSettings via an XML injection of the value of the Gateway key...