Submeter #589219: D-Link DIR816 1.10CNB05 OS Command Injectioninformação

TítuloD-Link DIR816 1.10CNB05 OS Command Injection
DescriçãoWe found an command Injection vulnerability in D-Link router with firmware which was released recently, allows remote attackers to execute arbitrary OS commands from a crafted request.(without authentication)In sylogapply function, syslogIp is directly passed by the attacker, so we can control the syslogIp to attack the OS.
Fonte⚠️ https://github.com/wudipjq/my_vuln/blob/main/D-Link5/vuln_47/47.md
Utilizador
 pjqwudi (UID 85106)
Submissão03/06/2025 07h23 (há 1 Ano)
Moderação04/06/2025 13h03 (1 day later)
EstadoDuplicado
Entrada VulDB124081 [D-Link DIR-816 A2 1.10 B05 /goform/sylogapply handler syslogIp Elevação de Privilégios]
Pontos0

VoltarVisão GeralPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!