| Titel | D-Link DIR816 1.10CNB05 Improper Access Controls |
|---|
| Beschreibung | We discovered that a recently released firmware of D-Link routers contains vulnerabilities related to improper access control and incorrect privilege assignment.An attacker can access the redirect.asp page without any authentication, which results in the disclosure of the token_id used by the router for authentication. |
|---|
| Quelle | ⚠️ https://github.com/wudipjq/my_vuln/blob/main/D-Link7/vuln_84/84.md |
|---|
| Benutzer | pjqwudi (UID 85106) |
|---|
| Einreichung | 02.03.2026 09:21 (vor 1 Monat) |
|---|
| Moderieren | 14.03.2026 22:57 (13 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 351084 [D-Link DIR-816 1.10CNB05 goahead redirect.asp token_id erweiterte Rechte] |
|---|
| Punkte | 19 |
|---|