Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dlink vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-5319
Cross-site request forgery (CSRF) vulnerability in setup/security.cgi in D-Link DCS-900, DCS-2000, and DCS-5300 allows remote malicious users to hijack the authentication of administrators for requests that change the administrator password via the rootpass parameter.
Dlink Dcs-900 -
Dlink Dcs-2000 -
Dlink Dcs-5300 -
2 EDB exploits
6.1
CVSSv3
CVE-2018-6527
XSS vulnerability in htdocs/webinc/js/adv_parent_ctrl_map.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote malicious users to ...
Dlink Dir-860l Firmware
Dlink Dir-865l Firmware
Dlink Dir-868l Firmware
1 Github repository
8.8
CVSSv3
CVE-2017-17020
On D-Link DCS-5009 devices with firmware 1.08.11 and previous versions, DCS-5010 devices with firmware 1.14.09 and previous versions, and DCS-5020L devices with firmware prior to 1.15.01, command injection in alphapd (binary responsible for running the camera's web server) a...
Dlink Dcs-5009 Firmware
Dlink Dcs-5010 Firmware
Dlink Dcs-5020l Firmware
6.1
CVSSv3
CVE-2018-6528
XSS vulnerability in htdocs/webinc/body/bsc_sms_send.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote malicious users to read ...
Dlink Dir-860l Firmware
Dlink Dir-865l Firmware
Dlink Dir-868l Firmware
1 Github repository
6.1
CVSSv3
CVE-2018-6529
XSS vulnerability in htdocs/webinc/js/bsc_sms_inbox.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote malicious users to read a...
Dlink Dir-860l Firmware
Dlink Dir-865l Firmware
Dlink Dir-868l Firmware
1 Github repository
8.8
CVSSv3
CVE-2022-42160
D-Link COVR 1200,1202,1203 v1.08 exists to contain a command injection vulnerability via the system_time_timezone parameter at function SetNTPServerSettings.
Dlink Covr 1203 Firmware 1.08
Dlink Covr 1202 Firmware 1.08
Dlink Covr 1200 Firmware 1.08
8.8
CVSSv3
CVE-2022-42161
D-Link COVR 1200,1202,1203 v1.08 exists to contain a command injection vulnerability via the /SetTriggerWPS/PIN parameter at function SetTriggerWPS.
Dlink Covr 1203 Firmware 1.08
Dlink Covr 1202 Firmware 1.08
Dlink Covr 1200 Firmware 1.08
9.8
CVSSv3
CVE-2021-42627
The WAN configuration page "wan.htm" on D-Link DIR-615 devices with firmware 20.06 can be accessed directly without authentication which can lead to disclose the information about WAN settings and also leverage malicious user to modify the data fields of page.
Dlink Dir-615 Firmware 20.06
Dlink Dir-615 J1 Firmware 20.06
Dlink Dir-615 T1 Firmware 20.06
Dlink Dir-615jx10 Firmware 20.06
NA
CVE-2013-4772
D-Link DIR-505L SharePort Mobile Companion 1.01 and DIR-826L Wireless N600 Cloud Router 1.02 allows remote malicious users to bypass authentication via a direct request when an authorized session is active.
Dlink Dir-826l Wireless N600 Cloud Router Firmware 1.02
Dlink Dir-826l Wireless N600 Cloud Router A1
Dlink Dir-505l Shareport Mobile Companion Firmware 1.01
Dlink Dir-505l Shareport Mobile Companion A1
9.8
CVSSv3
CVE-2019-13101
An issue exists on D-Link DIR-600M 3.02, 3.03, 3.04, and 3.06 devices. wan.htm can be accessed directly without authentication, which can lead to disclosure of information about the WAN, and can also be leveraged by an malicious user to modify the data fields of the page.
Dlink Dir-600m Firmware 3.02
Dlink Dir-600m Firmware 3.03
Dlink Dir-600m Firmware 3.04
Dlink Dir-600m Firmware 3.06
1 EDB exploit
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »