CVE-2026-2855

A vulnerability has been found in D-Link DWR-M960 1.01.07. Affected is the function sub4648F0 of the file /boafrm/formDdns of the component DDNS Settings Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit ha...

CVE-2026-2855 D-Link DWR-M960 DDNS Settings formDdns sub_4648F0 stack-based overflow

A vulnerability has been found in D-Link DWR-M960 1.01.07. Affected is the function sub4648F0 of the file /boafrm/formDdns of the component DDNS Settings Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit ha...

CVE-2025-60672

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDynamicDNSSettings' functionality, where the 'ServerAddress' and 'Hostname' parameters in prog.cgi are stored in NVRAM and later used by rc to...

CVE-2025-60672

CVE-2025-60672 affects the D-Link DIR-878A1 router (firmware FW101B04.bin). The vulnerability is an unauthenticated command-injection in the SetDynamicDNSSettings function, where ServerAddress and Hostname parameters in prog.cgi are stored in NVRAM and later used by rc to build system commands ex...

D-Link DIR-878 安全漏洞

The D-Link DIR-878 is a wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-878 version A1FW101B04.bin, which originates from the unvalidated ServerAddress and Hostname parameters in the SetDynamicDNSSettings function, which can lead to remote command...

The vulnerability of the SetDynamicDNSSettings module in D-Link DIR-853 A1 router microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the SetDynamicDNSSettings module in D-Link DIR-853 A1 router microprogramming software is related to buffer overflow when processing the Password parameter. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

CVE-2025-25744

CVE-2025-25744 affects the D-Link DIR-853 A1 with firmware FW1.20B07. The vulnerability, described in the PT-Security entry PT-2025-7102, is a stack-based overflow in the SetDynamicDNSSettings module triggered by the Password parameter, indicating a buffer overflow condition that can be exploited...

D-Link DIR-853 安全漏洞

The D-Link DIR-853 is a router from China-based AUO D-Link. The D-Link DIR-853 suffers from a buffer overflow vulnerability that stems from the Password parameter in the SetDynamicDNSSettings module not properly handling user input. No details of the vulnerability are provided at this time...

CVE-2025-25744

D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the Password parameter in the SetDynamicDNSSettings module...

D-Link DIR-X3260 Buffer Overflow Vulnerability

The D-Link DIR-X3260 is a mainstream router with Wi-Fi 6 support from D-Link, model DIR-X3260 AX3200. The D-Link DIR-X3260 suffers from a buffer overflow vulnerability, which stems from a stack-based buffer overflow remote code execution vulnerability in prog.cgi SetDynamicDNSSettings, which can ...

D-Link DIR-3040 安全漏洞

The D-Link DIR-3040 is a router from China-based AUO D-Link. It provides the function of connecting to a network. A security vulnerability exists in the D-Link DIR-3040 that stems from a stack-based buffer overflow remote code execution vulnerability in prog.cgi SetDynamicDNSSettings...

PT-2024-1439 · Unknown · Systemk Nvr

Name of the Vulnerable Software and Affected Versions: SystemK NVR versions 2.3.5SK.30084998 and prior Description: The issue is related to a command injection vulnerability in the dynamic domain name system DDNS settings. This vulnerability could allow an attacker to execute arbitrary commands...

The vulnerability of the SetDynamicDNSSettings module in D-Link wireless router microprogramming software, such as DIR-882 and DIR-878, allows a hacker to execute arbitrary code.

The vulnerability of the SetDynamicDNSSettings module in D-Link wireless router microprogramming software, such as DIR-882 and DIR-878, is related to an issue with buffer overflows. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

CVE-2023-45465

Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings...

Command injection

Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings...

NETIS SYSTEMS N3 Command Injection Vulnerability

NETIS SYSTEMS N3 is a router from NETIS SYSTEMS. A security vulnerability exists in the NETIS SYSTEMS N3 Mv2-V1.0.1.865 version, which stems from a command injection vulnerability that includes the ddnsDomainName parameter via dynamic DNS settings...

CVE-2023-45465

Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings...

CVE-2023-45465

Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings...

TP-Link TL-WR340G / TL-WR340GD - Multiple Vulnerabilities

Title: TP-LINK Model No. TL-WR340G/TL-WR340GD - Multiple Vulnerabilities Date: 01.07.14 Vendor: TP-LINK Affected versions: TL-WR340G/TL-WR340GD Tested on: Firmware Version - 4.3.7 Build 090901 Rel.61899n, Hardware Version - WR340G v5 081520C2 at Linux Contact: smash at devilteam.pl Persistent Cro...