Soumettre #701774: D-Link DCS930L v1.15.04 Command Injectioninformation

TitreD-Link DCS930L v1.15.04 Command Injection
DescriptionA command injection vulnerability exists in the setSystemAdmin function of the alphapd binary in D-Link DCS-930L firmware v1.15.04. The AdminID parameter is directly taken from user input and inserted into shell commands without proper sanitization, allowing remote attackers to execute arbitrary OS commands via crafted requests.
La source⚠️ https://github.com/Madgeaaaaa/MY_VULN_2/blob/main/D-Link/vuln-1/D-Link%20Vulnerability.md
Utilisateur
 Anonymous User
Soumission26/11/2025 07:34 (il y a 5 mois)
Modérer07/12/2025 16:40 (11 days later)
StatutAccepté
Entrée VulDB334667 [D-Link DCS-930L 1.15.04 alphapd /setSystemAdmin AdminID élévation de privilèges]
Points19

PrécédentAperçuSuivant

Interested in the pricing of exploits?

See the underground prices here!