6 matches found
D-Link DI-7400G+ 命令注入漏洞
The D-Link DI-7400G+ is a router from China AUO D-Link. A command injection vulnerability exists in the D-Link DI-7400G+ version 19.12.25A1, which stems from incorrect manipulation of the parameter cmd in the file /mspinfo.htm?flag=cmd, which can lead to command injection...
CVE-2025-9769
The CVE-2025-9769 vulnerability affects D-Link DI-7400G+ (firmware 19.12.25A1). It is triggered by the function sub_478D28 in /mng_platform.asp, where manipulating the addr argument with the input echo 12345 > poc.txt leads to a command injection. This can enable an attacker to run arbitrary c...
D-Link DI-7400G+ 安全漏洞
The D-Link DI-7400G+ is a router from China-based AUO D-Link. A security vulnerability exists in the D-Link DI-7400G+ version 19.12.25A1, which originates from a command injection due to incorrect operation of the parameter addr in the file /mngplatform.asp...
D-Link DI-7300G+ 命令注入漏洞
The D-Link DI-7300G+ is a ruggedized enterprise-grade smart gateway from China's AUO D-Link. A command injection vulnerability exists in the D-Link DI-7300G+ version 19.12.25A1, which stems from the incorrect operation of the parameter url in the file wgettest.asp resulting in os command injectio...
PT-2025-27421 · D Link · D-Link Di-7300G+
Name of the Vulnerable Software and Affected Versions: D-Link DI-7300G+ version 19.12.25A1 Description: A critical issue was found in the httpd debug.asp file, where the manipulation of the Time argument leads to os command injection. The exploit has been disclosed to the public and may be used...
D-Link DI-7300G+ 命令注入漏洞
D-Link DI-7300G+ is a ruggedized enterprise-grade smart gateway from China AUO D-Link. A command injection vulnerability exists in the D-Link DI-7300G+ version 19.12.25A1, which stems from the incorrect operation of the parameters proxysrv, proxylanport, proxylanip, and proxysrvport in the file...