4 matches found
Sql injection
SQL injection vulnerability in D-Link Online behavior audit gateway DAR-7000 V31R02B1413C allows a remote attacker to obtain sensitive information and execute arbitrary code via the editrole.php component...
CVE-2023-42406
CVE-2023-42406 affects D-Link DAR-7000 Online Behavior Audit Gateway (V31R02B1413C). The vulnerability is an SQL injection in the editrole.php component that allows a remote attacker to obtain sensitive information and execute arbitrary code. CVSS-3.1 vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/...
CVE-2023-44693
D-Link Online behavior audit gateway DAR-7000 V31R02B1413C is vulnerable to SQL Injection via /importexport.php...
CVE-2023-44693
D-Link DAR-7000 Online Behavior Audit Gateway (model DAR-7000, version V31R02B1413C) is reported vulnerable to SQL injection via the importexport.php endpoint. The CVE-2023-44693 entry identifies the vulnerability as a SQL injection in importexport.php, with the impacted device exposing a high-se...