CVE-2019-13373

Summary (CVE-2019-13373) : A vulnerability in D-Link Central WiFi Manager CWM-100 (versions before v1.03R0100_BETA6) where input is not validated, allowing arbitrary SQL commands via the /web/Public/Conn.php?dbSQL parameter. This can lead to database compromise, including retrieval of usernames/p...

CVE-2019-13372

D-Link Central WiFi Manager CWM(100) is affected by a remote code execution vulnerability in /web/Lib/Action/IndexAction.class.php. Before v1.03R0100_BETA6, a crafted cookie can trigger eval injection via the cookie’s username field, and an empty password bypasses authentication, enabling unauthe...

Security feature bypass

The MailConnect feature on D-Link Central WiFiManager CWM-100 1.03 r0098 devices is intended to check a connection to an SMTP server but actually allows outbound TCP to any port on any IP address, leading to SSRF, as demonstrated by an index.php/System/MailConnect/host/127.0.0.1/port/22/secure/ U...

CVE-2018-15517

CVE-2018-15517 affects D-Link Central WifiManager CWM-100, version 1.03 r0098, where the MailConnect feature (meant to check SMTP connections) improperly allows outbound TCP to any port/IP, enabling server-side request forgery (SSRF). Exploitation demos show a URI like index.php/System/MailConnec...

CVE-2018-15516

CVE-2018-15516 affects the D-Link Central WiFiManager CWM-100, version 1.03 r0098, where the FTP server component can be abused to perform a PORT command bounce scan on port 8000, resulting in a Server-Side Request Forgery (SSRF) . Documented impact includes remote abuse of the network and potent...

Command Execution Vulnerability in D-link Central WifiManager

D-LINK Central WifiManager CWM-100 is D-LINK centralized wireless management software. A code execution vulnerability exists in the implementation of D-Link Central WiFiManager, which can be exploited by an attacker to gain control of a web server...

D-LINK Central WifiManager CWM-100 - Server-Side Request Forgery

Exploit Title: D-LINK Central WifiManager CWM-100 - Server-Side Request Forgery Author: John Page aka hyp3rlinx Date: 2018-11-09 Vendor: http://us.dlink.com Product Link: http://us.dlink.com/products/business-solutions/central-wifimanager-software-controller/ Version: Version 1.03 r0098 CVE: N/A...

D-LINK Central WifiManager CWM-100 FTP Server Port Bounce Scanning Vulnerability

D-LINK Central WifiManager CWM-100 is D-LINK centralized wireless management software. The FTP server component of D-LINK Central WifiManager can be used as a man-in-the-middle machine to allow PORT Command bounce scanning attacks. This vulnerability allows remote attackers to abuse the network a...

D-LINK Central WifiManager CWM-100 Trojan File SYSTEM Elevation of Privilege Vulnerability

D-LINK Central WifiManager CWM-100 is D-LINK centralized wireless management software. D-Link Central WiFiManager CWM-100 1.03 r0098 device will load the Trojan horse "quserex.dll" and will create a new thread running SYSTEM integrity...

D-LINK Central WifiManager (CWM 100) 1.03 r0098 DLL Hijacking

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/DLINK-CENTRAL-WIFI-MANAGER-CWM-100-SYSTEM-PRIVILEGE-ESCALATION.txt + ISR: ApparitionSec Greetz: indoushka | Eduardo B. Vendor us.dlink.com Product D-LINK Central WifiManager...