The vulnerability of the index.cgi component of D-Link DIR-620 router microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the index.cgi component in D-Link DIR-620 router microprogramming software is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands using...

CVE-2018-6211

On D-Link DIR-620 devices with a certain customized by ISP variant of firmware 1.0.3, 1.0.37, 1.3.1, 1.3.3, 1.3.7, 1.4.0, and 2.0.22, OS command injection is possible as a result of incorrect processing of the resbuf parameter to index.cgi...

D-Link DIR-620 Router OS Command Injection Vulnerability

D-link DIR-620 is a wireless router product from AUO D-Link. An operating system command injection vulnerability exists in the D-Link DIR-620 that stems from the program failing to properly handle the 'resbuf' parameter passed to the index.cgi file. An attacker can exploit this vulnerability to...

Cross site scripting

Cross-site scripting XSS vulnerability in D-Link DAP-1360 router with firmware 2.5.4 and later allows remote attackers to inject arbitrary web script or HTML via the resbuf parameter to index.cgi when resconfigid is set to 41...

CVE-2014-10028

Cross-site scripting XSS vulnerability in D-Link DAP-1360 router with firmware 2.5.4 and later allows remote attackers to inject arbitrary web script or HTML via the resbuf parameter to index.cgi when resconfigid is set to 41...

Cross site scripting

Cross-site scripting XSS vulnerability in D-Link DAP 1150 with firmware 1.2.94 allows remote attackers to inject arbitrary web script or HTML via the resbuf parameter to index.cgi in the Control/URL-filter section...