Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

CNVD
CNVDadded 2025/12/10 12:0 a.m.3 views

D-Link DCS-930L Command Injection Vulnerability

D-Link DCS-930L is a network camera from China AUO D-Link. The D-Link DCS-930L suffers from a command injection vulnerability that stems from the failure to properly filter construct command special characters, commands, etc. in the parameter AdminID in the file /setSystemAdmin. An attacker can...

8.8CVSS7.9AI score0.07402EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/12/09 9:33 a.m.33 views

CVE-2025-14225

A vulnerability was determined in D-Link DCS-930L 1.15.04. This affects an unknown part of the file /setSystemAdmin of the component alphapd. Executing manipulation of the argument AdminID can lead to command injection. The attack can be executed remotely. The exploit has been publicly disclosed...

8.8CVSS7AI score0.07402EPSS
Exploits1References1
OSV
OSVadded 2025/12/08 10:15 a.m.4 views

CVE-2025-14225

A vulnerability was determined in D-Link DCS-930L 1.15.04. This affects an unknown part of the file /setSystemAdmin of the component alphapd. Executing manipulation of the argument AdminID can lead to command injection. The attack can be executed remotely. The exploit has been publicly disclosed...

8.8CVSS5.6AI score0.07402EPSS
Exploits1References5
NVD
NVDadded 2025/12/08 10:15 a.m.4 views

CVE-2025-14225

A vulnerability was determined in D-Link DCS-930L 1.15.04. This affects an unknown part of the file /setSystemAdmin of the component alphapd. Executing manipulation of the argument AdminID can lead to command injection. The attack can be executed remotely. The exploit has been publicly disclosed...

8.8CVSS0.07402EPSS
Exploits1References5
EUVD
EUVDadded 2025/12/08 9:2 a.m.3 views

EUVD-2025-201702

A vulnerability was determined in D-Link DCS-930L 1.15.04. This affects an unknown part of the file /setSystemAdmin of the component alphapd. Executing manipulation of the argument AdminID can lead to command injection. The attack can be executed remotely. The exploit has been publicly disclosed...

6.5CVSS6.5AI score0.07402EPSS
Exploits1References6
CVE
CVEadded 2025/12/08 9:2 a.m.12 views

CVE-2025-14225

The CVE-2025-14225 entry concerns D-Link DCS-930L (firmware 1.15.04) and the alphapd component, where manipulating the AdminID parameter in /setSystemAdmin can yield remote command execution. Public disclosures exist, and the affected products are no longer supported by the maintainer. Several co...

8.8CVSS6.7AI score0.07402EPSS
Exploits1References5Affected Software1
CNNVD
CNNVDadded 2025/12/08 12:0 a.m.3 views

D-Link DCS-930L 命令注入漏洞

D-Link DCS-930L is a network camera from China AUO D-Link. The D-Link DCS-930L suffers from a command injection vulnerability that stems from the failure to properly filter construct command special characters, commands, etc. in the parameter AdminID in the file /setSystemAdmin. An attacker can...

8.8CVSS7AI score0.07402EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/05/22 11:40 a.m.10 views

CVE-2016-11021

setSystemCommand on D-Link DCS-930L devices before 2.12 allows a remote attacker to execute code via an OS command in the SystemCommand parameter...

9CVSS7.5AI score0.68525EPSS
Exploits1References1
BDU FSTEC
BDU FSTECadded 2023/03/06 12:0 a.m.3 views

The vulnerability of D-Link DCS-930L Wi-Fi cameras lies in the lack of measures taken to neutralize special elements used in the operating system’s command structure. This allows intruders to execute arbitrary commands.

The vulnerability of D-Link DCS series Wi-Fi cameras exists due to the lack of measures taken to neutralize special elements used in the operating system’s command structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

9CVSS7.5AI score0.68525EPSS
Exploits1References4
Check Point Advisories
Check Point Advisoriesadded 2022/04/17 12:0 a.m.9 views

D-Link DCS-930L Remote Code Execution (CVE-2016-11021)

A remote code execution vulnerability exists in D-Link DCS-930L. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9CVSS5.8AI score0.68525EPSS
Exploits1
CISA KEV Catalog
CISA KEV Catalogadded 2022/03/25 12:0 a.m.12 views

D-Link DCS-930L Devices OS Command Injection Vulnerability

setSystemCommand on D-Link DCS-930L devices allows a remote attacker to execute code via an OS command...

9CVSS6.6AI score0.68525EPSS
In wildExploits1
VulnCheck KEV
VulnCheck KEVadded 2021/11/11 12:0 a.m.3 views

VulnCheck KEV: CVE-2016-11021

setSystemCommand on D-Link DCS-930L devices allows a remote attacker to execute code via an OS command...

9CVSS7.2AI score0.68525EPSS
Exploits1References1
NVD
NVDadded 2020/03/09 1:15 a.m.23 views

CVE-2016-11021

setSystemCommand on D-Link DCS-930L devices before 2.12 allows a remote attacker to execute code via an OS command in the SystemCommand parameter...

9CVSS7.2AI score0.68525EPSS
Exploits1References2
Prion
Prionadded 2020/03/09 1:15 a.m.14 views

Command injection

setSystemCommand on D-Link DCS-930L devices before 2.12 allows a remote attacker to execute code via an OS command in the SystemCommand parameter...

9CVSS7.8AI score0.68525EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2020/03/09 12:55 a.m.23 views

CVE-2016-11021

setSystemCommand on D-Link DCS-930L devices before 2.12 allows a remote attacker to execute code via an OS command in the SystemCommand parameter...

7.2AI score0.68525EPSS
Exploits1References1
CVE
CVEadded 2020/03/09 12:55 a.m.1014 views

CVE-2016-11021

The CVE-2016-11021 entry concerns D-Link DCS-930L devices with version 2.12 and earlier. The vulnerability arises from a flaw in the setSystemCommand handling, allowing a remote attacker to execute arbitrary OS commands via the SystemCommand parameter. The Red Hat, CISA KEV, CVE records and PT-Se...

9CVSS7.2AI score0.68525EPSS
In wildExploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2020/03/09 12:55 a.m.8 views

CVE-2016-11021

setSystemCommand on D-Link DCS-930L devices before 2.12 allows a remote attacker to execute code via an OS command in the SystemCommand parameter...

7.2AI score0.68525EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2020/03/09 12:0 a.m.33 views

CVE-2016-11021

setSystemCommand on D-Link DCS-930L devices before 2.12 allows a remote attacker to execute code via an OS command in the SystemCommand parameter. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9CVSS7.2AI score0.68525EPSS
In wildExploits1References2
GithubExploit
GithubExploitadded 2019/01/23 2:53 p.m.131 views

Exploit for Out-of-bounds Write in Dlink Dcs-930L_Firmware

D-Link Exploit The exploit exists in the devices server, alpha...

8.8CVSS9.2AI score0.03701EPSS
Exploits2
OSV
OSVadded 2017/04/24 10:59 a.m.1 views

CVE-2017-7852

D-Link DCS cameras have a weak/insecure CrossDomain.XML file that allows sites hosting malicious Flash objects to access and/or change the device's settings via a CSRF attack. This is because of the 'allow-access-from domain' child element set to , thus accepting requests from any domain. If a...

8.8CVSS5.6AI score0.04294EPSS
Exploits5References1
Rows per page
Query Builder