EUVD-2026-29031

A weakness has been identified in D-Link DNS-320 2.06B01. This impacts the function cgisethost/cgisetntp/cgifancontrol/cgimergeuser of the file /cgi-bin/systemmgr.cgi. This manipulation causes os command injection. It is possible to initiate the attack remotely...

CVE-2026-8273

A weakness has been identified in D-Link DNS-320 2.06B01. This impacts the function cgisethost/cgisetntp/cgifancontrol/cgimergeuser of the file /cgi-bin/systemmgr.cgi. This manipulation causes os command injection. It is possible to initiate the attack remotely...

PT-2026-39572

A weakness has been identified in D-Link DNS-320 2.06B01. This impacts the function cgi set host/cgi set ntp/cgi fan control/cgi merge user of the file /cgi-bin/system mgr.cgi. This manipulation causes os command injection. It is possible to initiate the attack remotely...

D-Link DNS-320 命令注入漏洞

The D-Link DNS-320 is a NAS Network Attached Storage device produced by D-Link Corporation. The D-Link DNS-320 version 2.06B01 has a command injection vulnerability. This vulnerability stems from functions in the file /cgi-bin/networkmgr.cgi, namely...

D-Link DIR-619L 安全漏洞

The D-Link DIR-619L is a wireless router produced by D-Link Corporation. The D-Link DIR-619L version 2.06B01 has a security vulnerability. This vulnerability stems from incorrect handling of the parameter curTime in the file/goform/formSchedule, which may lead to a stack buffer overflow...

CVE-2026-4188

CVE-2026-4188 affects D-Link DIR-619L (firmware 2.06B01). The vulnerability is in the boa component’s formSchedule function; manipulating the curTime argument triggers a stack-based buffer overflow. Exploitation is possible remotely and the exploit has been released publicly. The issue impacts pr...

CVE-2025-55599

D-Link DIR-619L 2.06B01 is vulnerable to Buffer Overflow in the formWlanSetup function via the parameter fwdswepKey...

PT-2025-34442 · D Link · Dir-619L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-619L version 2.06B01 Description: The D-Link DIR-619L device is susceptible to a buffer overflow issue in the formLanguageChange function through the nextPage parameter. Recommendations: Update to a newer, non-vulnerable version of...

D-Link DIR-816L Command Injection Vulnerability

The D-Link DIR-816L is a wireless router from China's AUO D-Link. A command injection vulnerability exists in the D-Link DIR-816L 2.06B01 and earlier versions, which stems from the lxmldbcsystem function in the environment variable handling component failing to properly filter construct command...

PT-2025-26864 · D Link · D-Link Dir-619L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-619L version 2.06B01 Description: A critical vulnerability has been found in the D-Link DIR-619L, affecting the function formSetWAN Wizard51 of the file /goform/formSetWAN Wizard51. The manipulation of the argument curTime leads to...

CVE-2025-6372

A vulnerability, which was classified as critical, was found in D-Link DIR-619L 2.06B01. This affects the function formSetWizard1 of the file /goform/formSetWizard1. The manipulation of the argument curTime leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The...