Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2026/06/05 12:0 a.m.11 views

CVE-2026-10878 D-Link DWR-M920 formSmsManage sub_41C8E8 command injection

A vulnerability was detected in D-Link DWR-M920 1.1.50/1.1.70. Affected is the function sub41C8E8 of the file /boafrm/formSmsManage. Performing a manipulation of the argument actionvalue results in command injection. The attack is possible to be carried out remotely. The exploit is now public and...

6.5CVSS6.4AI score0.04236EPSS
Exploits1References6
NVD
NVD
added 2026/01/29 10:15 p.m.7 views

CVE-2026-1625

A vulnerability was detected in D-Link DWR-M961 1.1.47. The impacted element is the function sub4250E0 of the file /boafrm/formSmsManage of the component SMS Message. Performing a manipulation of the argument actionvalue results in command injection. The attack may be initiated remotely. The...

8.8CVSS0.02568EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/01/29 10:2 p.m.4 views

CVE-2026-1625

A vulnerability was detected in D-Link DWR-M961 1.1.47. The impacted element is the function sub4250E0 of the file /boafrm/formSmsManage of the component SMS Message. Performing a manipulation of the argument actionvalue results in command injection. The attack may be initiated remotely. The...

6.5CVSS5.7AI score0.02568EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/01/29 10:2 p.m.35 views

CVE-2026-1625 D-Link DWR-M961 SMS Message formSmsManage sub_4250E0 command injection

A vulnerability was detected in D-Link DWR-M961 1.1.47. The impacted element is the function sub4250E0 of the file /boafrm/formSmsManage of the component SMS Message. Performing a manipulation of the argument actionvalue results in command injection. The attack may be initiated remotely. The...

6.5CVSS0.02568EPSS
Exploits0References5
CVE
CVE
added 2026/01/29 10:2 p.m.23 views

CVE-2026-1625

CVE-2026-1625 affects D-Link DWR-M961 firmware 1.1.47. The vulnerability is in the SMS Message component, specifically sub_4250E0 in /boafrm/formSmsManage, where manipulating the action_value argument leads to command injection. The attack can be initiated remotely and an exploit is public. The c...

8.8CVSS5.7AI score0.02568EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder