2 matches found
Code injection
An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute arbitrary commands via the wpsstaenrolleepin parameter in a setstaenrolleepin.cgi POST request. TRENDnet TEW-632BRP 1.010B32 is also affected...
CVE-2019-9126
CVE-2019-9126 affects D-Link DIR-825 Rev.B 2.10 devices. The vulnerability is an information disclosure through requests to the router_info.xml document, leading to exposure of the device’s PIN code, MAC address, routing table, firmware version, update time, QoS and other LAN/WLAN information. Th...