| Titre | D-Link DI-500WF-WT latest Command Injection |
|---|
| Description | The DI-500WF-WT 802.11N300M touch panel AP under Youxun Technology Co., Ltd. has a command injection vulnerability, allowing attackers to execute arbitrary code through the cmd parameter in the sub-456DE8 function |
|---|
| Utilisateur | eternity. (UID 85154) |
|---|
| Soumission | 11/05/2025 07:55 (il y a 12 mois) |
|---|
| Modérer | 03/06/2025 06:24 (23 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 310909 [D-Link DI-500WF-WT jusqu’à 20250511 jhttpd /msp_info.htm?flag=cmd sub_456DE8 élévation de privilèges] |
|---|
| Points | 13 |
|---|