Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-42406

Published: 26/10/2023 Updated: 03/11/2023
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Dar-7000 Firmware

Vulnerability Summary

SQL injection vulnerability in D-Link Online behavior audit gateway DAR-7000 V31R02B1413C allows a remote malicious user to obtain sensitive information and execute arbitrary code via the editrole.php component.

Vulnerable Product Search on Vulmon Subscribe to Product

dlink dar-7000_firmware 31r02b1413c

References

CWE-89https://github.com/flyyue2001/cve/blob/main/D-LINK%20-DAR-7000_sql_:sysmanage:editrole.php.mdhttps://github.com/1dreamGN/CVE/blob/main/CVE-2023-42406.mdhttps://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook