8 matches found
Edimax BR-6208AC 命令注入漏洞
The Edimax BR-6208AC is a wireless router from Taiwan, China-based Xunzhou Edimax Corporation. A command injection vulnerability exists in Edimax BR-6208AC version 1.02 and 1.03, which originates from incorrect manipulation of the file /gogorm/formRoute parameter strIp/strMask/strGateway in the...
TRENDnet TEW751DR 和 TEW-752DRU 缓冲区错误漏洞
The TRENDnet TEW751DR and TRENDnet TEW-752DRU are both dual-band wireless routers from Trendnet. A security vulnerability exists in the TRENDnet TEW751DR v1.03 and TEW-752DRU v1.03, which originates from a stack overflow in the genacgimain function...
Multiple vulnerabilities in Buffalo WSR-1166DHP3 and WSR-1166DHP4 routers
Overview Buffalo WSR-1166DHP3 and WSR-1166DHP4 routers provided by Buffalo Inc. contain multiple vulnerabilities listed below. Improper access control CWE-284 - CVE-2021-20730 OS command injection CWE-78 - CVE-2021-20731 Chuya Hayakawa of 00One, Inc. reported this vulnerability to JPCERT/CC...
CVE-2019-9976
The Boa server configuration on DASAN H660RM devices with firmware 1.03-0022 logs POST data to the /tmp/boa-temp file, which allows logged-in users to read the credentials of administration web interface users...
DLink #DSL2750B OS Command Injection Exploit
This Metasploit module exploits a remote command injection vulnerability in D-Link DSL-2750B devices. Vulnerability can be exploited through "cli" parameter that is directly used to invoke "ayecli" binary. Vulnerable firmwares are from 1.01 up to 1.03. This module requires Metasploit:...
D-Link DIR-865L - Cross-Site Request Forgery
D-Link DIR-865L - Cross-Site Request Forgery source: https://www.securityfocus.com/bid/59312/info D-Link DIR-865L is prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the...
D-Link DIR-865L - Cross-Site Request Forgery
source: https://www.securityfocus.com/bid/59312/info D-Link DIR-865L is prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected device. Other attacks are also...
D-Link DIR-645 Authentication Bypass Vulnerability
D-Link DIR-645 devices suffer from a direct access authentication bypass vulnerability. Unauthenticated remote access to D-Link DIR-645 devices ======================================================= ADVISORY INFORMATION Title: Unauthenticated remote access to D-Link DIR-645 devices Discovery dat...