Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dlink dir-816l firmware 2.06 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2020-15895
An XSS issue exists on D-Link DIR-816L devices 2.x prior to 1.10b04Beta02. In the file webinc/js/info.php, no output filtration is applied to the RESULT parameter, before it's printed on the webpage.
Dlink Dir-816l Firmware 2.06
Dlink Dir-816l Firmware 2.06.b09
9.8
CVSSv3
CVE-2020-15893
An issue exists on D-Link DIR-816L devices 2.x prior to 1.10b04Beta02. Universal Plug and Play (UPnP) is enabled by default on port 1900. An attacker can perform command injection by injecting a payload into the Search Target (ST) field of the SSDP M-SEARCH discover packet.
Dlink Dir-816l Firmware 2.06
Dlink Dir-816l Firmware 2.06.b09
7.5
CVSSv3
CVE-2020-15894
An issue exists on D-Link DIR-816L devices 2.x prior to 1.10b04Beta02. There exists an exposed administration function in getcfg.php, which can be used to call various services. It can be utilized by an malicious user to retrieve various sensitive information, such as admin login...
Dlink Dir-816l Firmware 2.06
Dlink Dir-816l Firmware 2.06.b09
6.1
CVSSv3
CVE-2020-25786
webinc/js/info.php on D-Link DIR-816L 2.06.B09_BETA and DIR-803 1.04.B02 devices allows XSS via the HTTP Referer header. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: this is typically not exploitable because of URL encoding ...
Dlink Dir-803 Firmware 1.04.b02
Dlink Dir-816l Firmware 2.06
Dlink Dir-816l Firmware 2.06.b09
Dlink Dir-645 Firmware 1.06b01
Dlink Dir-815 Firmware 2.07.b01
Dlink Dir-860l Firmware 1.10b04
Dlink Dir-865l Firmware 1.08b01
7.5
CVSSv3
CVE-2019-7642
D-Link routers with the mydlink feature have some web interfaces without authentication requirements. An attacker can remotely obtain users' DNS query logs and login logs. Vulnerable targets include but are not limited to the latest firmware versions of DIR-817LW (A1-1.04), ...
Dlink Dir-817lw Firmware 1.04
Dlink Dir-816l Firmware 2.06
Dlink Dir-816 Firmware 2.06
Dlink Dir-850l Firmware 1.09
Dlink Dir-868l Firmware 1.10
2 Github repositories
NA
CVE-2015-5999
Multiple cross-site request forgery (CSRF) vulnerabilities in the D-Link DIR-816L Wireless Router with firmware prior to 2.06.B09_BETA allow remote malicious users to hijack the authentication of administrators for requests that (1) change the admin password, (2) change the netwo...
Dlink Dir-816l Firmware
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started