Search the Community

A remote vulnerability was discovered on D-Link DIR-600M Wireless N 150 Home Router in multiple respective firmware versions. The vulnerability provides unauthenticated remote access to the router's WAN configuration page i.e. "wan.htm", which leads to disclosure of sensitive user information including but not limited to PPPoE, DNS configuration etc, also allowing to change the configuration settings as well. Metasploit module and NSE scripts are included. View the full article

D-Link 6600-AP suffers from cross site scripting, key extraction, shell escape, config file disclosure, and denial of service vulnerabilities. View the full article

D-Link models DIR-652, DIR-615, DIR-827, DIR-615, DIR-657, and DIR-825 suffer from an administrative password disclosure vulnerability. View the full article

D-Link DWL-2600AP suffers from an authentication OS command injection vulnerability via the upgrade firmware functionality. View the full article

D-Link DWL-2600AP suffers from an authentication OS command injection vulnerability via the save configuration functionality. View the full article

D-Link DWL-2600AP suffers from an authentication OS command injection vulnerability via the tftp restore functionality. View the full article

D-Link DI-524 version 2.06RU suffers from a cross site scripting vulnerability. View the full article

D-Link DIR-140L and DIR-640L suffer from an administrative credential disclosure vulnerability. View the full article

D-Link DSL-2770L, DIR-140L, DIR-640L, DWR-116, DWR-512, DWR-555, and DWR-921 all suffer from an administrative credential disclosure vulnerability. View the full article

D-Link DSL-2770L suffers from an administrative credential disclosure vulnerability. View the full article

D-Link Central WiFiManager CWM-100 version 1.03 r0098 devices will load a trojan horse "quserex.dll" and will create a new thread running with SYSTEM integrity. View the full article

Using a web browser or script server-side request forgery (SSRF) can be initiated against internal/external systems to conduct port scans by leveraging D-LINK's MailConnect component. The MailConnect feature on D-Link Central WiFiManager CWM-100 version 1.03 r0098 devices is intended to check a connection to an SMTP server but actually allows outbound TCP to any port on any IP address, leading to SSRF, as demonstrated by an index.php/System/MailConnect/host/127.0.0.1/port/22/secure/ URI. This can undermine accountability of where scan or connections actually came from and or bypass the FW etc. This can be automated via script or using Web Browser. View the full article

The FTP Server component of the D-LINK Central WifiManager can be used as a man-in-the-middle machine allowing PORT Command bounce scan attacks. This vulnerability allows remote attackers to abuse your network and discreetly conduct network port scanning. Victims will then think these scans are originating from the D-LINK network running the afflicted FTP Server and not you. Version 1.03 r0098 is affected. View the full article

Multiple D-Link router models suffer from code execution, plain-text password storage, and directory traversal vulnerabilities. View the full article

D-Link DSL-2640T suffers from a cross site scripting vulnerability. View the full article

D-Link Central WiFiManager Software Controller suffers from hard-coded credential, code execution, and cross site scripting vulnerabilities. Version 1.03 is affected. View the full article

D-Link Dir-600M N150 suffers from a cross site scripting vulnerability. View the full article

D-Link DIR-615 suffers from a denial of service vulnerability. View the full article