CVE-2018-10106

Published
View on NVD ↗
CVSS v3
N/A
CVSS v2
7.5
HIGH
Affected
1
PROJECT

Description

D-Link DIR-815 REV. B (with firmware through DIR-815_REVB_FIRMWARE_PATCH_2.07.B01) devices have permission bypass and information disclosure in /htdocs/web/getcfg.php, as demonstrated by a /getcfg.php?a=%0a_POST_SERVICES%3DDEVICE.ACCOUNT%0aAUTHORIZED_GROUP%3D1 request.

tobechenghuai/Some-Vulnerabilities-of-D-link-Dir815
tobechenghuai/Some-Vulnerabilities-of-D-link-Dir815
I find some vulnerabilities on d-link dir815 router recently.This is a report to the dlink security team.
GitHubGitHub
5