20 matches found
EUVD-2019-16522
Malware in sbrugna...
EUVD-2019-16523
Malware in sbrugna...
CVE-2019-6969
The web interface of the D-Link DVA-5592 20180823 is vulnerable to an authentication bypass that allows an unauthenticated user to have access to sensitive information such as the Wi-Fi password and the phone number if VoIP is in use...
CVE-2019-6968
The web interface of the D-Link DVA-5592 20180823 is vulnerable to XSS because HTML form parameters are directly reflected...
D-Link DVA-5592 Information Disclosure Vulnerability
The D-Link DVA-5592 is a wireless router from AUO D-Link of Taiwan, China. An information disclosure vulnerability exists in the web interface of the D-Link DVA-5592 version 20180823, which can be exploited by an attacker to access sensitive information Wi-Fi passwords and phone numbers...
D-Link DVA-5592 Cross-Site Scripting Vulnerability
The D-Link DVA-5592 is a wireless router from AUO D-Link of Taiwan, China. A cross-site scripting vulnerability exists in the web interface of the D-Link DVA-5592 version 20180823, which can be exploited by an attacker to execute client-side code...
CVE-2019-6968
The web interface of the D-Link DVA-5592 20180823 is vulnerable to XSS because HTML form parameters are directly reflected...
CVE-2019-6969
The web interface of the D-Link DVA-5592 20180823 is vulnerable to an authentication bypass that allows an unauthenticated user to have access to sensitive information such as the Wi-Fi password and the phone number if VoIP is in use...
CVE-2019-6968
The web interface of the D-Link DVA-5592 20180823 is vulnerable to XSS because HTML form parameters are directly reflected...
CVE-2019-6969
The web interface of the D-Link DVA-5592 20180823 is vulnerable to an authentication bypass that allows an unauthenticated user to have access to sensitive information such as the Wi-Fi password and the phone number if VoIP is in use...
Design/Logic Flaw
The web interface of the D-Link DVA-5592 20180823 is vulnerable to XSS because HTML form parameters are directly reflected...
CVE-2019-6969
The Red Hat CVE-2019-6969 entry confirms a vulnerability in the D-Link DVA-5592 20180823 web interface, caused by an authentication bypass that allows an unauthenticated user to access sensitive information (e.g., Wi-Fi password and VoIP-related phone numbers). Impact details from the original en...
CVE-2019-6969
The web interface of the D-Link DVA-5592 20180823 is vulnerable to an authentication bypass that allows an unauthenticated user to have access to sensitive information such as the Wi-Fi password and the phone number if VoIP is in use...
CVE-2019-6968
The web interface of the D-Link DVA-5592 20180823 is vulnerable to XSS because HTML form parameters are directly reflected...
CVE-2019-6968
CVE-2019-6968 affects the D-Link DVA-5592 (firmware 20180823); the web interface is vulnerable to XSS via directly reflected HTML form parameters. Red Hat entries concur the same D-Link XSS issue. The connected documents do not provide exploit details or remediation; no fix/version is specified i...
CVE-2018-17777
An issue was discovered on D-Link DVA-5592 A1WI20180823 devices. If the PIN of the page "/ui/cbpc/login" is the default Parental Control PIN 0000, it is possible to bypass the login form by editing the path of the cookie "sid" generated by the page. The attacker will have access to the router...
CVE-2018-17777
An issue was discovered on D-Link DVA-5592 A1WI20180823 devices. If the PIN of the page "/ui/cbpc/login" is the default Parental Control PIN 0000, it is possible to bypass the login form by editing the path of the cookie "sid" generated by the page. The attacker will have access to the router...
Design/Logic Flaw
An issue was discovered on D-Link DVA-5592 A1WI20180823 devices. If the PIN of the page "/ui/cbpc/login" is the default Parental Control PIN 0000, it is possible to bypass the login form by editing the path of the cookie "sid" generated by the page. The attacker will have access to the router...
CVE-2018-17777
An issue was discovered on D-Link DVA-5592 A1WI20180823 devices. If the PIN of the page "/ui/cbpc/login" is the default Parental Control PIN 0000, it is possible to bypass the login form by editing the path of the cookie "sid" generated by the page. The attacker will have access to the router...
CVE-2018-17777
The CVE-2018-17777 entry describes a credential-bypass on D-Link DVA-5592 A1_WI_20180823 devices. If the Parental Control PIN on the page /ui/cbpc/login is the default 0000, an attacker can bypass the login form by editing the path of the cookie sid, gaining administrator access to the router con...