CVE-2025-52079

The administrator password setting of the D-Link DIR-820L 1.06B02 is has Improper Access Control and is vulnerable to Unverified Password Change via crafted POST request to /getset.ccp...

CVE-2025-52079

The administrator password setting of the D-Link DIR-820L 1.06B02 is has Improper Access Control and is vulnerable to Unverified Password Change via crafted POST request to /getset.ccp...

EUVD-2023-49132

Malicious code in bioql PyPI...

CVE-2024-51186

D-Link DIR-820L 1.05b03 was discovered to contain a remote code execution RCE vulnerability via the pingaddr parameter in the pingv4 and pingv6 functions...

CVE-2024-51186

D-Link DIR-820L 1.05b03 was discovered to contain a remote code execution RCE vulnerability via the pingaddr parameter in the pingv4 and pingv6 functions...

Design/Logic Flaw

D-Link device DIR-820L 1.05B03 is vulnerable to Insecure Permissions...

CVE-2023-44809

CVE-2023-44809 affects the D-Link DIR-820L router (firmware 1.05B03) due to inadequate access control, described as Insecure Permissions. The connected PT-2023-6235 entry notes that exploitation could allow a remote attacker to execute arbitrary code. There is no public information in the provide...

CVE-2023-44808

D-Link DIR-820L 1.05B03 has a stack overflow vulnerability in the sub4507CC function...

CVE-2023-44809

D-Link device DIR-820L 1.05B03 is vulnerable to Insecure Permissions...

CVE-2023-44809

D-Link device DIR-820L 1.05B03 is vulnerable to Insecure Permissions...

PT-2023-6235 · D Link · D-Link Dir-820L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-820L version 1.05B03 Description: The issue is related to inadequate access control in the firmware of D-Link DIR-820L routers. Exploitation of this issue could allow a remote attacker to execute arbitrary code. Recommendations: Fo...

D-Link DIR-820L Devices Multiple Vulnerabilities (2020 - 2024)

D-Link DIR-820L devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2023-44807

The CVE-2023-44807 entry concerns the D-Link DIR-820L firmware version 1.05B03 with a stack overflow in the cancelPing function. According to provided documents, this results in a high-severity (CVSS v3.1: 9.8) vulnerability with network attack vector and no user interaction, potentially enabling...

D-Link Routers Unauthenticated RCE (CVE-2022-26258)

The remote D-Link router is affected by a remote code execution vulnerability. D-Link DIR-820L 1.05B03 was discovered to contain a remote command execution RCE vulnerability via the Device Name parameter in /lan.asp. Note that Nessus has not tested for this issue but has instead relied only on th...

D-Link DIR-820L Command Injection (CVE-2022-26258)

A command injection vulnerability exists in D-Link DIR-820L. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

D-Link Dir-820L Remote Command Execution Vulnerability

D-Link Dir-820L is a dual-band wireless router from China's Youxun D-Link.D-Link DIR-820L 1.05B03 has a security vulnerability, and no details of the vulnerability are available...

CVE-2022-26258

CVE-2022-26258 affects D-Link DIR-820L devices (firmware around 1.05B03). Multiple open‑source scanners and NVD entries describe a remote code execution (RCE) vulnerability in this model, with initial reports citing an RCE via HTTP POST to get set ccp and separate notes of an RCE via the Device N...

DLink / TRENDnet - NCC Service Command Injection Exploit

Exploit for hardware platform in category web applications This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'D-Link/TRENDnet NCC Service Command Injection', 'Description' = %q...

D-Link/TRENDnet NCC Service Command Injection

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'D-Link/TRENDnet NCC Service Command Injection', 'Description' = %q This module exploits a remote command injection vulnerability on...

D-Link and TRENDnet 'ncc2' service - multiple vulnerabilities

D-Link and TRENDnet 'ncc2' service - multiple vulnerabilities Discovered by: ---- Peter Adkins [email protected] Access: ---- Local network; unauthenticated access. Remote network; unauthenticated access. Remote network; 'drive-by' via CSRF. Tracking and identifiers: ---- CVE - Mitre...