44 matches found
CVE-2022-28915
D-Link DIR-816 A2v1.10CNB04 was discovered to contain a command injection vulnerability via the admuser and admpass parameters in /goform/setSysAdm...
Command injection
D-Link DIR-816 A2v1.10CNB04 was discovered to contain a command injection vulnerability via the admuser and admpass parameters in /goform/setSysAdm...
PT-2022-19309 · D Link · D-Link Dir-816 A2
Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 A2 version 1.10CNB04 Description: A command injection issue was discovered via the admuser and admpass parameters in the "/goform/setSysAdm" API endpoint. Recommendations: For D-Link DIR-816 A2 version 1.10CNB04, as a temporary...
FUDForum Cross-Site Scripting Vulnerability (CNVD-2020-44297)
FUDForum is a PHP-based open source forum software . A cross-site scripting vulnerability exists in FUDForum version 3.0.9. An attacker can exploit this vulnerability by sending a specially crafted request to the admsession.php and admuser.php scripts to execute arbitrary code on the system...