Invia #703150: D-Link DIR-803 1.04 and earlier Authorization Bypassinformazioni

TitoloD-Link DIR-803 1.04 and earlier Authorization Bypass
DescrizioneAn authentication bypass vulnerability exists in the /getcfg.php interface of D-Link DIR-803 routers (A1 1.04 and earlier). By supplying SERVICES=DEVICE.ACCOUNT together with an injected AUTHORIZED_GROUP=1%0a parameter, an attacker can cause getcfg.php to return the XML configuration containing administrator login credentials.
Fonte⚠️ https://github.com/Madgeaaaaa/MY_VULN_2/blob/main/D-Link/vuln-2/DIR-803%20Authentication%20Bypass.md
Utente
 Anonymous User
Sottomissione28/11/2025 13:15 (7 mesi fa)
Moderazione11/12/2025 09:40 (13 days later)
StatoAccettato
Voce VulDB335869 [D-Link DIR-803 fino a 1.04 Configuration /getcfg.php AUTHORIZED_GROUP rivelazione di informazioni]
Punti19

PrecedenteVisione D'ensembleIl prossimo

Might our Artificial Intelligence support you?

Check our Alexa App!