Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dlink vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-19598
D-Link DAP-1860 devices before v1.04b03 Beta allow access to administrator functions without authentication via the HNAP_AUTH header timestamp value. In HTTP requests, part of the HNAP_AUTH header is the timestamp used to determine the time when the user sent the request. If this...
Dlink Dap-1860 Firmware 1.01b06
Dlink Dap-1860 Firmware 1.02b01
Dlink Dap-1860 Firmware 1.04b01
9.8
CVSSv3
CVE-2018-18007
atbox.htm on D-Link DSL-2770L devices allows remote unauthenticated malicious users to discover admin credentials.
Dlink Dsl-2770l Firmware Me 1.01
Dlink Dsl-2770l Firmware Me 1.02
Dlink Dsl-2770l Firmware Me 1.06
9.8
CVSSv3
CVE-2021-39613
D-Link DVG-3104MS version 1.0.2.0.3, 1.0.2.0.4, and 1.0.2.0.4E contains hard-coded credentials for undocumented user accounts in the '/etc/passwd' file. As weak passwords have been used, the plaintext passwords can be recovered from the hash values. NOTE: This vulnerabi...
Dlink Dvg-3104ms Firmware 1.0.2.0.3
Dlink Dvg-3104ms Firmware 1.0.2.0.4
Dlink Dvg-3104ms Firmware 1.0.2.0.4e
NA
CVE-2014-3760
Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DAP 1150 with firmware 1.2.94 allow remote malicious users to hijack the authentication of administrators for requests that (1) enable or (2) disable the DMZ in the Firewall/DMZ section via a request to index.cg...
Dlink Dap 1150 Firmware 1.2.94
Dlink Dap 1150 -
NA
CVE-2014-3761
Cross-site scripting (XSS) vulnerability in D-Link DAP 1150 with firmware 1.2.94 allows remote malicious users to inject arbitrary web script or HTML via the res_buf parameter to index.cgi in the Control/URL-filter section.
Dlink Dap 1150 Firmware 1.2.94
Dlink Dap 1150 -
8.8
CVSSv3
CVE-2023-45208
A command injection in the parsing_xml_stasurvey function inside libcgifunc.so of the D-Link DAP-X1860 repeater 1.00 up to and including 1.01b05-01 allows attackers (within range of the repeater) to run shell commands as root during the setup process of the repeater, via a crafte...
Dlink Dap-1860 Firmware 1.00
Dlink Dap-1860 Firmware 1.01b05-01
Dlink Dap-1860 Firmware 1.01b94
8.8
CVSSv3
CVE-2023-5144
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, was found in D-Link DAR-7000 and DAR-8000 up to 20151231. Affected is an unknown function of the file /sysmanage/updateos.php. The manipulation of the argument file_upload leads to unrestricted upl...
Dlink Dar-7000 Firmware
Dlink Dar-8000 Firmware
8.8
CVSSv3
CVE-2023-5145
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability has been found in D-Link DAR-7000 up to 20151231 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /sysmanage/licence.php. The manipulation of the argument file_upload leads to unrest...
Dlink Dar-7000 Firmware
Dlink Dar-8000 Firmware
8.8
CVSSv3
CVE-2023-5146
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DAR-7000 and DAR-8000 up to 20151231 and classified as critical. Affected by this issue is some unknown functionality of the file /sysmanage/updatelib.php. The manipulation of the argument file_upload leads to un...
Dlink Dar-7000 Firmware
Dlink Dar-8000 Firmware
8.8
CVSSv3
CVE-2023-5148
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DAR-7000 and DAR-8000 up to 20151231. It has been declared as critical. This vulnerability affects unknown code of the file /Tool/uploadfile.php. The manipulation of the argument file_upload leads to unrestricted...
Dlink Dar-7000 Firmware
Dlink Dar-8000 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »