cwm-wmn.com Cross Site Scripting vulnerability OBB-2514023

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2019-13374

CVE-2019-13374 affects D-Link Central WiFi Manager CWM(100) prior to version 1.03R0100_BETA6. The vulnerability is an XSS in the Resource View (PayAction.class.php) that allows remote attackers to inject arbitrary web script or HTML via the index.php/Pay/passcodeAuth passcode parameter. Impact de...

CVE-2019-13373

Summary (CVE-2019-13373) : A vulnerability in D-Link Central WiFi Manager CWM-100 (versions before v1.03R0100_BETA6) where input is not validated, allowing arbitrary SQL commands via the /web/Public/Conn.php?dbSQL parameter. This can lead to database compromise, including retrieval of usernames/p...

CVE-2019-13372

D-Link Central WiFi Manager CWM(100) is affected by a remote code execution vulnerability in /web/Lib/Action/IndexAction.class.php. Before v1.03R0100_BETA6, a crafted cookie can trigger eval injection via the cookie’s username field, and an empty password bypasses authentication, enabling unauthe...

Security feature bypass

The MailConnect feature on D-Link Central WiFiManager CWM-100 1.03 r0098 devices is intended to check a connection to an SMTP server but actually allows outbound TCP to any port on any IP address, leading to SSRF, as demonstrated by an index.php/System/MailConnect/host/127.0.0.1/port/22/secure/ U...

CVE-2018-15517

CVE-2018-15517 affects D-Link Central WifiManager CWM-100, version 1.03 r0098, where the MailConnect feature (meant to check SMTP connections) improperly allows outbound TCP to any port/IP, enabling server-side request forgery (SSRF). Exploitation demos show a URI like index.php/System/MailConnec...

CVE-2018-15516

CVE-2018-15516 affects the D-Link Central WiFiManager CWM-100, version 1.03 r0098, where the FTP server component can be abused to perform a PORT command bounce scan on port 8000, resulting in a Server-Side Request Forgery (SSRF) . Documented impact includes remote abuse of the network and potent...

Command Execution Vulnerability in D-link Central WifiManager

D-LINK Central WifiManager CWM-100 is D-LINK centralized wireless management software. A code execution vulnerability exists in the implementation of D-Link Central WiFiManager, which can be exploited by an attacker to gain control of a web server...

D-LINK Central WifiManager CWM-100 - Server-Side Request Forgery

Exploit Title: D-LINK Central WifiManager CWM-100 - Server-Side Request Forgery Author: John Page aka hyp3rlinx Date: 2018-11-09 Vendor: http://us.dlink.com Product Link: http://us.dlink.com/products/business-solutions/central-wifimanager-software-controller/ Version: Version 1.03 r0098 CVE: N/A...

D-LINK Central WifiManager CWM-100 FTP Server Port Bounce Scanning Vulnerability

D-LINK Central WifiManager CWM-100 is D-LINK centralized wireless management software. The FTP server component of D-LINK Central WifiManager can be used as a man-in-the-middle machine to allow PORT Command bounce scanning attacks. This vulnerability allows remote attackers to abuse the network a...

D-LINK Central WifiManager CWM-100 Trojan File SYSTEM Elevation of Privilege Vulnerability

D-LINK Central WifiManager CWM-100 is D-LINK centralized wireless management software. D-Link Central WiFiManager CWM-100 1.03 r0098 device will load the Trojan horse "quserex.dll" and will create a new thread running SYSTEM integrity...

D-LINK Central WifiManager (CWM 100) 1.03 r0098 DLL Hijacking

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/DLINK-CENTRAL-WIFI-MANAGER-CWM-100-SYSTEM-PRIVILEGE-ESCALATION.txt + ISR: ApparitionSec Greetz: indoushka | Eduardo B. Vendor us.dlink.com Product D-LINK Central WifiManager...

CWM (dettaglio-prodotto.asp?id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability CWM dettaglio-prodotto.asp?id AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.cynaskyweb.it/ Persian Gulf 4 Ever! Dork : "Powered by CWM" "inurl:dettaglio-prodotto.asp?id...