Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Packet Storm
Packet Stormadded 2016/10/31 12:0 a.m.61 views

D-Link DIR-300NRUB5 Firmware 1.2.94 Cross Site Request Forgery

Hello list! There are Abuse of Functionality, Brute Force and Cross-Site Request Forgery vulnerabilities in D-Link DIR-300. ------------------------- Affected products: ------------------------- Vulnerable is the next model: D-Link DIR-300NRUB5, Firmware 1.2.94. All previous versions also must be...

1.1AI score
Exploits0
NVD
NVDadded 2014/05/16 2:55 p.m.11 views

CVE-2014-3760

Multiple cross-site request forgery CSRF vulnerabilities in D-Link DAP 1150 with firmware 1.2.94 allow remote attackers to hijack the authentication of administrators for requests that 1 enable or 2 disable the DMZ in the Firewall/DMZ section via a request to index.cgi or 3 add, 4 modify, or 5...

6.8CVSS7.3AI score0.00323EPSS
Exploits1References2
NVD
NVDadded 2014/05/16 2:55 p.m.10 views

CVE-2014-3761

Cross-site scripting XSS vulnerability in D-Link DAP 1150 with firmware 1.2.94 allows remote attackers to inject arbitrary web script or HTML via the resbuf parameter to index.cgi in the Control/URL-filter section...

4.3CVSS5.8AI score0.00354EPSS
Exploits1References2
Prion
Prionadded 2014/05/16 2:55 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in D-Link DAP 1150 with firmware 1.2.94 allows remote attackers to inject arbitrary web script or HTML via the resbuf parameter to index.cgi in the Control/URL-filter section...

4.3CVSS6.2AI score0.00354EPSS
Exploits1References2Affected Software1
Prion
Prionadded 2014/05/16 2:55 p.m.13 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in D-Link DAP 1150 with firmware 1.2.94 allow remote attackers to hijack the authentication of administrators for requests that 1 enable or 2 disable the DMZ in the Firewall/DMZ section via a request to index.cgi or 3 add, 4 modify, or 5...

6.8CVSS7.8AI score0.00323EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2014/05/16 2:0 p.m.52 views

CVE-2014-3760

CVE-2014-3760 applies to D-Link DAP-1150 firmware 1.2.94, where multiple CSRF flaws allow remote attackers to hijack administrator sessions and perform actions via index.cgi in the Firewall/DMZ and Control/URL-filter sections (e.g., enabling/disabling DMZ or adding/modifying/deleting URL-filter r...

6.8CVSS7.5AI score0.00323EPSS
Exploits1References2Affected Software2
Cvelist
Cvelistadded 2014/05/16 2:0 p.m.13 views

CVE-2014-3760

Multiple cross-site request forgery CSRF vulnerabilities in D-Link DAP 1150 with firmware 1.2.94 allow remote attackers to hijack the authentication of administrators for requests that 1 enable or 2 disable the DMZ in the Firewall/DMZ section via a request to index.cgi or 3 add, 4 modify, or 5...

7.3AI score0.00323EPSS
Exploits1References2
exploitpack
exploitpackadded 2012/02/13 12:0 a.m.10 views

D-Link DAP-1150 1.2.94 - Cross-Site Request Forgery

D-Link DAP-1150 1.2.94 - Cross-Site Request Forgery source: https://www.securityfocus.com/bid/51985/info D-Link DAP-1150 is prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access...

0.8AI score
Exploits0
Rows per page
Query Builder