42 matches found
CVE-2025-11339
A vulnerability has been found in D-Link DI-7100G C1 up to 20250928. This issue affects the function sub4BD4F8 of the file /webchat/hiblock.asp of the component jhttpd. The manipulation of the argument popupId leads to buffer overflow. The attack can be initiated remotely. The exploit has been...
EUVD-2025-32557
A vulnerability has been found in D-Link DI-7100G C1 up to 20250928. This issue affects the function sub4BD4F8 of the file /webchat/hiblock.asp of the component jhttpd. The manipulation of the argument popupId leads to buffer overflow. The attack can be initiated remotely. The exploit has been...
EUVD-2025-32550
A flaw has been found in D-Link DI-7100G C1 up to 20250928. This vulnerability affects the function sub4C0990 of the file /webchat/login.cgi of the component jhttpd. Executing manipulation of the argument openid can lead to buffer overflow. It is possible to launch the attack remotely. The exploi...
CVE-2025-11339
A vulnerability has been found in D-Link DI-7100G C1 up to 20250928. This issue affects the function sub4BD4F8 of the file /webchat/hiblock.asp of the component jhttpd. The manipulation of the argument popupId leads to buffer overflow. The attack can be initiated remotely. The exploit has been...
CVE-2025-11339
A vulnerability has been found in D-Link DI-7100G C1 up to 20250928. This issue affects the function sub4BD4F8 of the file /webchat/hiblock.asp of the component jhttpd. The manipulation of the argument popupId leads to buffer overflow. The attack can be initiated remotely. The exploit has been...
CVE-2025-11339 D-Link DI-7100G C1 jhttpd hi_block.asp sub_4BD4F8 buffer overflow
A vulnerability has been found in D-Link DI-7100G C1 up to 20250928. This issue affects the function sub4BD4F8 of the file /webchat/hiblock.asp of the component jhttpd. The manipulation of the argument popupId leads to buffer overflow. The attack can be initiated remotely. The exploit has been...
CVE-2025-11339
The CVE-2025-11339 entry concerns the D-Link DI-7100G C1 router. A buffer overflow in the jhttpd component’s function sub_4BD4F8 (in /webchat/hi_block.asp) can be triggered by manipulating the popupId argument, allowing remote exploitation. Public disclosure is indicated, with references across m...
CVE-2025-11338
A flaw has been found in D-Link DI-7100G C1 up to 20250928. This vulnerability affects the function sub4C0990 of the file /webchat/login.cgi of the component jhttpd. Executing manipulation of the argument openid can lead to buffer overflow. It is possible to launch the attack remotely. The exploi...
CVE-2025-11338
A flaw has been found in D-Link DI-7100G C1 up to 20250928. This vulnerability affects the function sub4C0990 of the file /webchat/login.cgi of the component jhttpd. Executing manipulation of the argument openid can lead to buffer overflow. It is possible to launch the attack remotely. The exploi...
CVE-2025-11335 D-Link DI-7100G C1 jhttpd msp_info.htm sub_46409C command injection
A weakness has been identified in D-Link DI-7100G C1 up to 20250928. Affected by this vulnerability is the function sub46409C of the file /mspinfo.htm?flag=qos of the component jhttpd. This manipulation of the argument iface causes command injection. The attack is possible to be carried out...
PT-2025-40892
Name of the Vulnerable Software and Affected Versions D-Link DI-7100G C1 versions up to 20250928 Description A flaw exists in D-Link DI-7100G C1 that allows for remote command injection. This is due to the manipulation of the iface argument within the sub 46409C function of the /msp...
PT-2025-40913
Name of the Vulnerable Software and Affected Versions D-Link DI-7100G C1 versions up to 20250928 Description A flaw exists in the jhttpd component of D-Link DI-7100G C1. The issue is due to a buffer overflow in the sub 4BD4F8 function within the /webchat/hi block.asp file. The popupId argument ca...
EUVD-2025-14978
Malicious code in bioql PyPI...
EUVD-2025-26310
Malicious code in bioql PyPI...
EUVD-2025-19507
Malicious code in bioql PyPI...
CVE-2025-10440
A vulnerability has been found in D-Link DI-8100, DI-8100G, DI-8200, DI-8200G, DI-8003 and DI-8003G 16.07.26A1/17.12.20A1/19.12.10A1. Affected by this vulnerability is the function sub4621DC of the file usbpaswd.asp of the component jhttpd. The manipulation of the argument hname leads to os comma...
CVE-2025-10441
CVE-2025-10441 affects D-Link DI-8100G/DI-8200G/DI-8003G (versions 17.12.20A1 and 19.12.10A1) where the function sub_433F7C in version_upgrade.asp of the jhttpd component mishandles the path argument, resulting in an OS command injection. The issue can be exploited remotely without user interacti...
CVE-2025-10440
A vulnerability has been found in D-Link DI-8100, DI-8100G, DI-8200, DI-8200G, DI-8003 and DI-8003G 16.07.26A1/17.12.20A1/19.12.10A1. Affected by this vulnerability is the function sub4621DC of the file usbpaswd.asp of the component jhttpd. The manipulation of the argument hname leads to os comma...
PT-2025-37463
Name of the Vulnerable Software and Affected Versions: D-Link DI-8100 versions 16.07.26A1, 17.12.20A1, and 19.12.10A1 D-Link DI-8100G versions 16.07.26A1, 17.12.20A1, and 19.12.10A1 D-Link DI-8200 versions 16.07.26A1, 17.12.20A1, and 19.12.10A1 D-Link DI-8200G versions 16.07.26A1, 17.12.20A1, and...
PT-2025-37467
Name of the Vulnerable Software and Affected Versions: D-Link DI-8100G versions 17.12.20A1 and 19.12.10A1 D-Link DI-8200G versions 17.12.20A1 and 19.12.10A1 D-Link DI-8003G versions 17.12.20A1 and 19.12.10A1 Description: A vulnerability exists due to the manipulation of the path argument within t...