Lucene search
K

9 matches found

NVD
NVD
added 2020/03/04 7:15 p.m.26 views

CVE-2019-19226

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface Firmware EU1.03 allows an attacker to enable or disable MAC address filtering by submitting a crafted Forms/WlanMacFilter1 POST request without being authenticated on the admin interface...

7.5CVSS7.3AI score0.02532EPSS
Exploits1References4
OSV
OSV
added 2020/03/04 7:15 p.m.5 views

CVE-2019-19226

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface Firmware EU1.03 allows an attacker to enable or disable MAC address filtering by submitting a crafted Forms/WlanMacFilter1 POST request without being authenticated on the admin interface...

7.5CVSS7.2AI score0.02532EPSS
Exploits1References4
NVD
NVD
added 2020/03/04 7:15 p.m.17 views

CVE-2019-19223

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface Firmware EU1.03 allows an attacker to reboot the router by submitting a reboot.html GET request without being authenticated on the admin interface...

7.8CVSS7.4AI score0.0426EPSS
Exploits1References4
Prion
Prion
added 2020/03/04 7:15 p.m.12 views

Improper access control

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface Firmware EU1.03 allows an attacker to download the configuration binary file settings by submitting a rom-0 GET request without being authenticated on the admin interface...

5CVSS7.3AI score0.02532EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2020/03/04 7:15 p.m.15 views

Improper access control

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface Firmware EU1.03 allows an attacker to enable or disable MAC address filtering by submitting a crafted Forms/WlanMacFilter1 POST request without being authenticated on the admin interface...

5CVSS7.3AI score0.02532EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2020/03/04 6:5 p.m.25 views

CVE-2019-19224

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface Firmware EU1.03 allows an attacker to download the configuration binary file settings by submitting a rom-0 GET request without being authenticated on the admin interface...

7.4AI score0.02532EPSS
Exploits1References4
Cvelist
Cvelist
added 2020/03/04 6:4 p.m.20 views

CVE-2019-19223

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface Firmware EU1.03 allows an attacker to reboot the router by submitting a reboot.html GET request without being authenticated on the admin interface...

7.4AI score0.0426EPSS
Exploits1References4
CVE
CVE
added 2020/03/04 6:4 p.m.49 views

CVE-2019-19223

The CVE-2019-19223 issue affects the D-Link DSL-2680 router (EU firmware EU_1.03) where the web administration interface’s reboot.html endpoint is accessible without authentication. Root cause: Broken access control in the admin UI allows an unauthenticated user to trigger a reboot, impacting ava...

7.8CVSS7.3AI score0.0426EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2020/03/04 6:3 p.m.30 views

CVE-2019-19222

A Stored XSS issue in the D-Link DSL-2680 web administration interface Firmware EU1.03 allows an authenticated attacker to inject arbitrary JavaScript code into the info.html administration page by sending a crafted Forms/wirelessautonetwork1 POST request...

5.2AI score0.01867EPSS
Exploits1References4
Rows per page
Query Builder