Published: 07/07/2014 Updated: 26/04/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in D-Link DIR-645 Router (Rev. A1) with firmware prior to 1.04B11 allow remote malicious users to inject arbitrary web script or HTML via the (1) deviceid parameter to parentalcontrols/bind.php, (2) RESULT parameter to info.php, or (3) receiver parameter to bsc_sms_send.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
dlink dir-645_firmware
dlink dir-645 a1

Multiple vulnerabilities on D-Link DIR-645 devices ================================================== [ADVISORY INFORMATION] Title: Multiple vulnerabilities on D-Link DIR-645 devices Discovery date: 06/03/2013 Release date: 02/08/2013 Advisory URL: robertogreyhatsit/advisories/20130801-dlink-dir645txt Credits: Roberto Palea ...

Explanation and code to emulate and run a MIPS binary using Qiling framework. Also a detailed vulnerability writeup for a buffer overflow affecting the emulated binary is provided.

Analyzing a buffer overflow in the DLINK DIR-645 with Qiling framework, Part I Introduction Over the last couple of weeks I've been playing with a super interesting project: Qiling Framework —I highly recommend you to give it a try I attended the virtual workshop given by xwings —one of the creators— at he HITB conference (amazing conference, by the w

CWE-79 http://osvdb.org/show/osvdb/95952 http://osvdb.org/show/osvdb/95953 http://roberto.greyhats.it/advisories/20130801-dlink-dir645.txt http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10008 http://osvdb.org/show/osvdb/95910 http://www.securityfocus.com/bid/61579 https://nvd.nist.gov https://github.com/nahueldsanchez/blogpost_qiling_dlink_1 https://www.exploit-db.com/exploits/27283/

CVE-2013-7389

Vulnerability Summary

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect