| Title | D-Link DIR816 1.10CNB05 Improper Access Controls |
|---|
| Description | We discovered that a recently released firmware of D-Link routers contains vulnerabilities related to improper access control and incorrect privilege assignment.An attacker can access the redirect.asp page without any authentication, which results in the disclosure of the token_id used by the router for authentication. |
|---|
| Source | ⚠️ https://github.com/wudipjq/my_vuln/blob/main/D-Link7/vuln_84/84.md |
|---|
| User | pjqwudi (UID 85106) |
|---|
| Submission | 03/02/2026 09:21 (1 month ago) |
|---|
| Moderation | 03/14/2026 22:57 (13 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 351084 [D-Link DIR-816 1.10CNB05 goahead redirect.asp token_id access control] |
|---|
| Points | 19 |
|---|