49 matches found
CVE-2020-18331
Directory traversal vulnerability in ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01hardware platform Gpn2.4P21-CWIFI-V0.05, via the getpage parameter to /cgi-bin/webproc...
PT-2023-11491 · China Mobile · Chinamobile Plc Wireless Router
Name of the Vulnerable Software and Affected Versions: ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN version W2000EN-01 Description: The issue is related to a directory traversal vulnerability. It can be exploited via the getpage parameter to the "/cgi-bin/webproc" API endpoint...
CVE-2022-38258
A local file inclusion LFI vulnerability in D-Link DIR 819 v1.06 allows attackers to cause a Denial of Service DoS or access sensitive server information via manipulation of the getpage parameter in a crafted web request...
CVE-2022-38258
A local file inclusion LFI vulnerability in D-Link DIR 819 v1.06 allows attackers to cause a Denial of Service DoS or access sensitive server information via manipulation of the getpage parameter in a crafted web request...
D-Link DIR-819 路径遍历漏洞
D-Link DIR-819 is a wireless dual-band router from China AUO D-Link. A security vulnerability exists in the D-Link DIR-819 v1.06. An attacker can exploit this vulnerability to cause a denial of service DoS or access sensitive server information by manipulating the getpage parameter in a specially...
PT-2022-24318 · D Link · D-Link Dir 819
Name of the Vulnerable Software and Affected Versions: D-Link DIR 819 version 1.06 Description: A local file inclusion issue allows attackers to cause a Denial of Service or access sensitive server information via manipulation of the getpage parameter in a crafted web request. This can lead to...
CVE-2021-34860
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-2020 1.01rc001 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the getpage parameter provided to th...
PT-2021-20708 · D Link · D-Link Dap-2020
Name of the Vulnerable Software and Affected Versions: D-Link DAP-2020 version 1.01rc001 Description: This issue allows network-adjacent attackers to disclose sensitive information on affected installations. Authentication is not required to exploit this issue. The specific flaw exists within the...
CVE-2021-27248
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 v1.01rc001 Wi-Fi access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of CGI scripts. When parsing the...
PT-2020-6513 · D Link · D-Link Dap-2020
Name of the Vulnerable Software and Affected Versions: D-Link DAP-2020 version 1.01rc001 Description: The issue is related to a buffer overflow on the stack in the webproc getpage scenario of the D-Link DAP-2020 Wi-Fi access point's firmware. This can be exploited by network-adjacent attackers to...
CVE-2016-11016
NETGEAR JNR1010 devices before 1.0.0.32 allow webproc?getpage= XSS...
CVE-2016-11016
NETGEAR JNR1010 devices before 1.0.0.32 allow webproc?getpage= XSS...
Directory traversal
On FiberHome routers, Directory Traversal exists in /cgi-bin/webproc via the getpage parameter in conjunction with a crafted var:page value...
CVE-2017-15647
On FiberHome routers, Directory Traversal exists in /cgi-bin/webproc via the getpage parameter in conjunction with a crafted var:page value...
CVE-2017-15647
On FiberHome routers, Directory Traversal exists in /cgi-bin/webproc via the getpage parameter in conjunction with a crafted var:page value...
FiberHome - Directory Traversal
Vulnerability Summary The following advisory describes a directory traversal vulnerability found in FiberHome routers. FiberHome Technologies Group “was established in 1974. After continuous and intensive development for over 40 years, its business has been extended to R&D, manufacturing, marketi...
Gongjin Electronics BE126 WIFI repeater Arbitrary File Read Vulnerability
Gongjin Electronics BE126 WIFI repeater is a wireless internet repeater from Gongjin Electronics China. A security vulnerability exists in Gongjin Electronics BE126 WIFI repeater version 1.0. The vulnerability can be exploited to read the entire file system with a specially crafted 'getpage'...
Arbitrary file deletion
There is LFD local file disclosure on BE126 WIFI repeater 1.0 devices that allows attackers to read the entire filesystem on the device via a crafted getpage parameter...
Zyxel P-660HW-61 Firmware 3.40(PE.11)C0 Router - Local File Inclusion
Zyxel P-660HW-61 Firmware 3.40PE.11C0 Router - Local File Inclusion Exploit Title: Zyxel P-660HW-61 3.40PE.11C0 - Local File Inclusion Date: 2-05-2017 Exploit Author: ReverseBrain Contact: https://www.twitter.com/ReverseBrain Vendor Homepage: https://www.zyxel.com Software Link:...
D-Link DVG-N5402SP Cross Site Scripting
DLink Multiple Cross Site Scripting Vulnerabilities Vendor : www.dlink.com Product Model: DVGN5402SP Published: 02/22/2016 Discovered by vesp3r [email protected] Advisory Timeline ----------------- 02/05/2016 - Vendor notified No response Vulnerability ------------- Reflected Cross Site...