| Titel | D-Link DIR-823X 250416 Command Injection |
|---|
| Beschreibung | In handler goform/set_prohibiting,the macaddr parameter is not properly validated.Attackers can set malicious strings to perform injection attacks. There are two injection points in this function. |
|---|
| Quelle | ⚠️ https://github.com/n1ptune/dink/blob/main/set_prohibiting.md |
|---|
| Benutzer | neptune111 (UID 90924) |
|---|
| Einreichung | 24.09.2025 17:29 (vor 7 Monaten) |
|---|
| Moderieren | 27.09.2025 10:16 (3 days later) |
|---|
| Status | Duplikat |
|---|
| VulDB Eintrag | 301236 [D-Link DIR-823X HTTP POST Request /goform/set_prohibiting erweiterte Rechte] |
|---|
| Punkte | 0 |
|---|