91 matches found
CVE-2023-4542
A vulnerability was found in D-Link DAR-8000-10 up to 20230809. It has been classified as critical. This affects an unknown part of the file /app/sys1.php. The manipulation of the argument cmd with the input id leads to os command injection. It is possible to initiate the attack remotely. The...
CVE-2023-4711
A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230819. Affected by this issue is some unknown functionality of the file /log/decodmail.php. The manipulation of the argument file leads to os command injection. The attack may be launched remotely. Th...
EUVD-2023-57489
Malicious code in bioql PyPI...
EUVD-2024-44297
Malicious code in bioql PyPI...
EUVD-2023-57491
Malicious code in bioql PyPI...
CVE-2024-4699
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230922. This issue affects some unknown processing of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. The attack may be initiated...
CVE-2023-5153
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, was found in D-Link DAR-8000 up to 20151231. This affects an unknown part of the file /Tool/querysql.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2023-5151
UNSUPPORTED WHEN ASSIGNED A vulnerability classified as critical was found in D-Link DAR-8000 up to 20151231. Affected by this vulnerability is an unknown functionality of the file /autheditpwd.php. The manipulation of the argument hidid leads to sql injection. The attack can be launched remotely...
VulnCheck KEV: CVE-2023-5148
UNSUPPORTED WHEN ASSIGNED A vulnerability was found in D-Link DAR-7000 and DAR-8000 up to 20151231. It has been declared as critical. This vulnerability affects unknown code of the file /Tool/uploadfile.php. The manipulation of the argument fileupload leads to unrestricted upload. The...
DAR-8000-10 Deserialization Vulnerability in AUO Electronic Devices (Shanghai) Co.
DAR-8000-10 is the Internet Behavior Audit Gateway from China AUO D-Link. AUO DAR-8000-10 20230922 and earlier versions have a deserialization vulnerability that originates from the unsafe deserialization of the parameter sql of the file /importhtml.php when receiving serialized data submitted by...
PT-2024-3651 · D Link · D-Link Dar-7000-40 +2
Name of the Vulnerable Software and Affected Versions: D-Link DAR-7000-40 version V31R02B1413C D-Link DAR-7000 affected versions not specified D-Link DAR-8000 affected versions not specified Description: A critical vulnerability was found in the D-Link DAR-7000 and DAR-8000 routers, affecting an...
PT-2024-3697 · D Link · D-Link Dar-8000 +1
Name of the Vulnerable Software and Affected Versions: D-Link DAR-7000 versions prior to the latest supported version D-Link DAR-8000 versions prior to the latest supported version Description: The issue is related to an unrestricted file upload vulnerability in the /firewall/urlblist.php file of...
PT-2024-3696 · D Link · D-Link Dar-7000-40 +2
Name of the Vulnerable Software and Affected Versions: D-Link DAR-7000-40 version V31R02B1413C D-Link DAR-7000 affected versions not specified D-Link DAR-8000 affected versions not specified Description: A critical issue affects an unknown part of the file /url/url.php, allowing for unrestricted...
CVE-2024-4699
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230922. This issue affects some unknown processing of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. The attack may be initiated...
CVE-2024-4699
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230922. This issue affects some unknown processing of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. The attack may be initiated...
D-Link DAR-8000 代码问题漏洞
DAR-8000-10 is the Internet Behavior Audit Gateway from China AUO D-Link. AUO DAR-8000-10 20230922 and earlier versions have a deserialization vulnerability that originates from the unsafe deserialization of the parameter sql of the file /importhtml.php when receiving serialized data submitted by...
CVE-2024-4699
Summary (CVE-2024-4699): D-Link DAR-8000-10 (up to 20230922) is affected by a deserialization vulnerability in the /importhtml.php endpoint. The issue arises from manipulating the sql parameter, enabling remote code execution through unsafe deserialization. This vulnerability is documented across...
CVE-2024-4699 D-Link DAR-8000-10 importhtml.php deserialization
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230922. This issue affects some unknown processing of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. The attack may be initiated...
CVE-2024-4699 D-Link DAR-8000-10 importhtml.php deserialization
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230922. This issue affects some unknown processing of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. The attack may be initiated...
CVE-2023-5154
UNSUPPORTED WHEN ASSIGNED A vulnerability has been found in D-Link DAR-8000 up to 20151231 and classified as critical. This vulnerability affects unknown code of the file /sysmanage/changelogo.php. The manipulation of the argument fileupload leads to unrestricted upload. The attack can be initiat...