The vulnerability of the ftext() function in the upload_firmware.cgi script of the D-Link DIR-822+ wireless router’s microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the ftext function in the uploadfirmware.cgi script of the D-Link DIR-822+ wireless router microprogramming system is related to the failure to take measures to neutralize special elements used in the operating system’s command for processing the UPLOADFILENAME parameter...

CVE-2024-33345

D-Link DIR-823G A1V1.0.2B05 was found to contain a Null-pointer dereference in the main function of uploadfirmware.cgi, which allows remote attackers to cause a Denial of Service DoS via a crafted input...

CVE-2024-33344

D-Link DIR-822+ V1.0.5 was found to contain a command injection in ftext function of uploadfirmware.cgi, which allows remote attackers to execute arbitrary commands via shell...

CVE-2024-33344

D-Link DIR-822+ V1.0.5 was found to contain a command injection in ftext function of uploadfirmware.cgi, which allows remote attackers to execute arbitrary commands via shell...

The vulnerabilities of the components ExportSettings.sh, upload_settings.cgi, GetDownLoadSyslog.sh, and upload_firmware.cgi of the D-Link DIR-823G router’s microprogramming system allow a hacker to execute arbitrary code.

The vulnerability of the ExportSettings.sh, uploadsettings.cgi, GetDownLoadSyslog.sh, and uploadfirmware.cgi components of the D-Link DIR-823G router’s microprogramming system is related to the possibility of bypassing authentication. Exploiting this vulnerability allows a malicious actor to...

D-Link DIR-823G 安全漏洞

The D-Link DIR-823G is an AC1200M dual-band gigabit wireless router. a denial of service vulnerability exists in the /cgi-bin/uploadfirmware.cgi component of the D-Link DIR-823G version 1.02B05. An attacker can exploit this vulnerability to cause a denial of service...