CVE-2025-13305

A weakness has been identified in D-Link DWR-M920, DWR-M921, DWR-M960, DIR-822K and DIR-825M 1.01.07. This issue affects some unknown processing of the file /boafrm/formTracerouteDiagnosticRun. Executing manipulation of the argument host can lead to buffer overflow. The attack may be launched...

CVE-2025-10440

A vulnerability has been found in D-Link DI-8100, DI-8100G, DI-8200, DI-8200G, DI-8003 and DI-8003G 16.07.26A1/17.12.20A1/19.12.10A1. Affected by this vulnerability is the function sub4621DC of the file usbpaswd.asp of the component jhttpd. The manipulation of the argument hname leads to os comma...

CVE-2024-48637

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain a command injection vulnerability via the VLANID:1/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request...

PT-2024-6865 · D Link · D-Link Covr-X1870 +2

Name of the Vulnerable Software and Affected Versions: D-Link DIR-X4860 A1 version 1.00/1.04 D-Link DIR-X5460A1 affected versions not specified D-Link COVR-X1870 affected versions not specified Description: The issue concerns a hidden functionality in certain D-Link wireless routers where the...

PT-2023-4752 · D Link · D-Link Dap-2622

Name of the Vulnerable Software and Affected Versions: D-Link DAP-2622 affected versions not specified Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. The specific flaw exists within the DDP service, resulti...

CVE-2022-41140

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple D-Link routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the lighttpd service, which listens on TCP port 80 by default. The iss...

CVE-2018-19986

In the /HNAP1/SetRouterSettings message, the RemotePort parameter is vulnerable, and the vulnerability affects D-Link DIR-818LW Rev.A 2.05.B03 and DIR-822 B1 202KRb06 devices. In the SetRouterSettings.php source code, the RemotePort parameter is saved in the $pathinfwan1."/web" internal...

Tenda/Dlink/TP-LINK TD-W8961ND 'DHCP' Cross-Site Scripting Vulnerability

Tenda/Dlink/TP-LINK are all line router manufacturers that have released numerous models of router products. A cross-site scripting vulnerability exists in Tenda/Dlink/TP-LINK TD-W8961ND 'DHCP'. Allows an attacker to inject malicious script code on the application side to manipulate the router dh...

Dlink DIR routers HNAP login function multiple vulnerabilities-vulnerability warning-the black bar safety net

The affected products in the background Smartphones, laptops, tablets, phones, Smart TV, gaming console and other devices all at the same time to connect. This is why we designed our new AC3200 Ultra Wi-Fi router. By Tri-Band technology, making speeds of up to 3. 2Gbps, which provides a demanding...

D-Link DIR-815 / DIR-850L - SSDP Command Injection

Advisory Information Title: SSDP command injection using UDP for a lot of Dlink routers including DIR-815, DIR-850L Vendors contacted: William Brown Dlink Release mode: Released CVE: None Note: All these security issues have been discussed with the vendor and vendor indicated that they have fixed...

D-Link DIR-815 / DIR-850L SSDP Command Injection Vulnerability

D-Link routers, including DIR-815 and DIR-850L, suffer from an SSDP command injection vulnerability. Title: SSDP command injection using UDP for a lot of Dlink routers including DIR-815, DIR-850L Vendors contacted: William Brown Dlink Release mode: Released CVE: None Note: All these security issu...

DLink DIR-645 / DIR-815 Command Execution Vulnerability

Exploit for hardware platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core...

DoS проти DLINK (fragment flood)

Флуд фрагментированными пакетами приводит к отказу маршрутизаторов...