PT-2025-54228

A vulnerability was found in D-Link DI-7400G+ 19.12.25A1. This affects an unknown function of the file /msp info.htm?flag=cmd. The manipulation of the argument cmd results in command injection. The attack can be launched remotely. The exploit has been made public and could be used...

PT-2025-44031

Name of the Vulnerable Software and Affected Versions D-Link DI-7001 MINI versions 19.09.19A1 through 24.04.18B1 Description A flaw exists in D-Link DI-7001 MINI that allows for command injection. This occurs due to improper handling of the cmd argument within an unknown function of the /msp...

PT-2025-40892

Name of the Vulnerable Software and Affected Versions D-Link DI-7100G C1 versions up to 20250928 Description A flaw exists in D-Link DI-7100G C1 that allows for remote command injection. This is due to the manipulation of the iface argument within the sub 46409C function of the /msp...

PT-2024-6489 · D Link · D-Link Di-8100

Name of the Vulnerable Software and Affected Versions: D-Link DI-8100G version 17.12.20A1 Description: The issue is related to the msp info.htm file of the D-Link DI-8100G network device, which fails to neutralize special elements used in an operating system command. This can be exploited by a...