12 matches found
CVE-2026-2210
A vulnerability has been found in D-Link DIR-823X 250416. This affects the function sub4211C8 of the file /goform/setfiltering. Such manipulation leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...
CVE-2026-2210
CVE-2026-2210 affects D-Link DIR-823X (firmware 250416). The issue is in function sub_4211C8 of /goform/set_filtering, where input manipulation permits OS command injection. Exploitation can be remote over the network, and public disclosure of the exploit is noted. No patch/version details are pr...
CVE-2026-2155
A security flaw has been discovered in D-Link DIR-823X 250416. The affected element is the function sub4208A0 of the file /goform/setdmz of the component Configuration Handler. The manipulation of the argument dmzhost/dmzenable results in os command injection. The attack can be executed remotely...
D-Link DIR-823X 操作系统命令注入漏洞
The D-Link DIR-823X is a wireless router produced by D-Link Corporation. The D-Link DIR-823X 250416 version has a vulnerability related to operating system command injection. This vulnerability stems from incorrect operations on the parameters terminaladdr/serverip/serverport in the Configuration...
CVE-2026-2061
A vulnerability was determined in D-Link DIR-823X 250416. Affected by this issue is the function sub424D20 of the file /goform/setipv6. Executing a manipulation can lead to os command injection. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be...
PT-2026-6760
Name of the Vulnerable Software and Affected Versions D-Link DIR-823X version 250416 Description A flaw exists in the D-Link DIR-823X version 250416 that allows for operating system command injection. This is due to a manipulation possibility within the sub 424D20 function of the /goform/set ipv6...
CVE-2026-1685
The CVE-2026-1685 entry concerns D-Link DIR-823X 250416. Affects the Login component, specifically function sub_40AC74, where manipulation leads to improper restriction of excessive authentication attempts. The attack can be performed remotely and is described as high complexity with difficult ex...
EUVD-2025-31454
Malicious code in bioql PyPI...
CVE-2025-11098
A vulnerability was found in D-Link DIR-823X 250416. The affected element is an unknown function of the file /goform/setwifiblacklists. The manipulation of the argument macList results in command injection. The attack may be performed from remote. The exploit has been made public and could be use...
CVE-2025-11095 D-Link DIR-823X delete_offline_device command injection
A vulnerability was detected in D-Link DIR-823X 250416. This vulnerability affects unknown code of the file /goform/deleteofflinedevice. Performing manipulation of the argument delvalue results in command injection. Remote exploitation of the attack is possible. The exploit is now public and may ...
CVE-2025-10123 D-Link DIR-823X set_static_leases sub_415028 command injection
A vulnerability was determined in D-Link DIR-823X up to 250416. Affected by this vulnerability is the function sub415028 of the file /goform/setstaticleases. Executing manipulation of the argument Hostname can lead to command injection. The attack can be launched remotely. The exploit has been...
CVE-2025-29041
An issue in dlink DIR 823x 240802 allows a remote attacker to execute arbitrary code via the targetaddr key value and the function 0x41710c...