23 matches found
EUVD-2021-31682
Malicious code in bioql PyPI...
VulnCheck KEV: CVE-2019-8318
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST...
CVE-2021-45998
D-Link device DIR882 DIR882FW1.30B06Hotfix02 was discovered to contain a command injection vulnerability in the LocalIPAddress parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request...
CVE-2021-29294
Null Pointer Dereference vulnerability exists in D-Link DSL-2740R UK1.01, which could let a remove malicious user cause a denial of service via the sendhnapunauthorized function. It could be triggered by sending crafted POST request to /HNAP1/. NOTE: The DSL-2740R and all hardware revisions are...
CVE-2021-44882
D-Link device DIR878FW1.30B08Hotfix02 was discovered to contain a command injection vulnerability in the twsystem function. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request...
CVE-2023-24330
Command Injection vulnerability in D-Link Dir 882 with firmware version DIR882A1FW130B06 allows attackers to run arbitrary commands via crafted POST request to /HNAP1/...
D-Link DIR-882 Command Injection Vulnerability
The D-Link DIR-882 is a gigabit enterprise router from China Youxun D-Link. The D-Link DIR-882 suffers from a command injection vulnerability, which can be exploited by attackers to execute arbitrary commands via crafted HNAP1 POST requests...
D-Link DIR-878 OS Command Injection Vulnerability (CNVD-2022-14785)
D-Link DIR-878 is a wireless router from D-Link Taiwan, China. The D-Link DIR-878 is vulnerable to operating system command injection, which can be exploited by attackers to execute arbitrary commands via crafted HNAP1 POST requests...
The vulnerability of D-Link DIR-882 wireless routers’ microprogramming software lies in the improper handling of the LocalIPAddress parameter, allowing attackers to execute arbitrary commands.
The vulnerability of D-Link DIR-882 wireless routers’ microprogramming software is related to incorrect processing of the LocalIPAddress parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by sending specially crafted HNAP1 POST requests...
Command injection
D-Link device DIR878FW1.30B08Hotfix02 was discovered to contain a command injection vulnerability in the twsystem function. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request...
Command injection
D-Link device DIR882 DIR882FW1.30B06Hotfix02 was discovered to contain a command injection vulnerability in the twsystem function. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request...
Command injection
D-Link device DIR882 DIR882FW1.30B06Hotfix02 was discovered to contain a command injection vulnerability in the LocalIPAddress parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request...
CVE-2021-44880
D-Link devices DIR878 DIR878FW1.30B08Hotfix02 and DIR882 DIR882FW1.30B06Hotfix02 were discovered to contain a command injection vulnerability in the system function. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request...
CVE-2021-44882
D-Link device DIR878FW1.30B08Hotfix02 was discovered to contain a command injection vulnerability in the twsystem function. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request...
CVE-2019-9119
An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a...
Command injection
An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a...
Command injection
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST...
Command injection
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST...
CVE-2019-8315
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST...
CVE-2019-8318
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST...