CVE-2023-42406

SQL injection vulnerability in D-Link Online behavior audit gateway DAR-7000 V31R02B1413C allows a remote attacker to obtain sensitive information and execute arbitrary code via the editrole.php component...

D-Link DAR-7000 Operating System Command Injection Vulnerability

D-Link DAR-7000 is an Internet Behavior Audit Gateway from China AUO D-Link. An OS command injection vulnerability exists in the D-Link DAR-7000 20240912 and earlier versions, which stems from the parameter host in the file /view/DBManage/BackupServercommit.php that can lead to OS command...

Code Issue Vulnerability in DAR-7000 at AUO Electronic Devices (Shanghai) Co.

DAR-7000 is an Internet Behavior Audit Gateway from China AUO D-Link. AUO Electronic Devices Shanghai Co. A code issue vulnerability exists in the DAR-7000, which stems from the file parameter of /log/decodmail.php being able to deserialize certain content. No details of the vulnerability are...

DAR-8000-10 Deserialization Vulnerability in AUO Electronic Devices (Shanghai) Co.

DAR-8000-10 is the Internet Behavior Audit Gateway from China AUO D-Link. AUO DAR-8000-10 20230922 and earlier versions have a deserialization vulnerability that originates from the unsafe deserialization of the parameter sql of the file /importhtml.php when receiving serialized data submitted by...

Sql injection

SQL injection vulnerability in D-Link Online behavior audit gateway DAR-7000 V31R02B1413C allows a remote attacker to obtain sensitive information and execute arbitrary code via the editrole.php component...

CVE-2023-42406

CVE-2023-42406 affects D-Link DAR-7000 Online Behavior Audit Gateway (V31R02B1413C). The vulnerability is an SQL injection in the editrole.php component that allows a remote attacker to obtain sensitive information and execute arbitrary code. CVSS-3.1 vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/...

D-Link DAR-7000 importexport.php file SQL injection vulnerability

D-Link DAR-7000 is an Internet Behavior Audit Gateway from China AUO D-Link. A SQL injection vulnerability exists in the D-Link DAR-7000 importexport.php file. An attacker can exploit this vulnerability to execute illegal SQL commands to steal sensitive database data...

D-Link DAR-7000 mailrecvview.php File SQL Injection Vulnerability

D-Link DAR-7000 is an Internet Behavior Audit Gateway from China AUO D-Link. A SQL injection vulnerability exists in the D-Link DAR-7000 mailrecvview.php file, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data...

CVE-2023-44693

D-Link Online behavior audit gateway DAR-7000 V31R02B1413C is vulnerable to SQL Injection via /importexport.php...

CVE-2023-44693

D-Link DAR-7000 Online Behavior Audit Gateway (model DAR-7000, version V31R02B1413C) is reported vulnerable to SQL injection via the importexport.php endpoint. The CVE-2023-44693 entry identifies the vulnerability as a SQL injection in importexport.php, with the impacted device exposing a high-se...

D-Link DAR-7000 Code Issue Vulnerability

The D-Link DAR-7000 is an Internet Behavior Audit Gateway from China AUO D-Link. A code issue vulnerability exists in the D-Link DAR-7000. No information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements...

D-Link DAR-7000 Code Issue Vulnerability

The D-Link DAR-7000 is an Internet Behavior Audit Gateway from China AUO D-Link. A code issue vulnerability exists in the D-Link DAR-7000. No information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements...

D-Link DAR-7000 Code Issue Vulnerability

The D-Link DAR-7000 is an Internet Behavior Audit Gateway from China AUO D-Link. A code issue vulnerability exists in the D-Link DAR-7000. No information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements...

D-Link DAR-7000 Code Issue Vulnerability

The D-Link DAR-7000 is an Internet Behavior Audit Gateway from China AUO D-Link. A code issue vulnerability exists in the D-Link DAR-7000. No information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements...

D-Link DAR-8000-10 Operating System Command Injection Vulnerability

D-Link DAR-8000 is the Internet Behavior Audit Gateway from China AUO D-Link. The D-Link DAR-8000-10 version suffers from an operating system command injection vulnerability, which originates from the parameter id of the file /app/sys1.php failing to correctly filter construct command special...

Command Execution Vulnerability in Renzi Audit Gateway

Ltd. is the most comprehensive provider of large-scale cyberspace security protection solutions in China. A command execution vulnerability exists in the Renzihang Audit Gateway, which can be exploited by an attacker to execute arbitrary commands...

Weak Password Vulnerability in Byzoro Audit Gateway

PatrolFlow-AM series products are high-performance application-delivery Internet behavior management devices launched by Byzoro Networks to meet the needs of Internet access users in terms of information content security, regulation of online behavior, network resource utilization, legal risk...

SQL Injection Vulnerability in Internet Behavior Audit Gateway of Chengdu Flying Fish Star Technology Development Co.

Chengdu Flying Fish Star Technology Co., Ltd. is dedicated to providing intelligent and easy-to-use network communication products and services. A SQL injection vulnerability exists in the Internet Behavior Audit Gateway of Chengdu Flyingfish Star Technology Development Co. An attacker is allowed...