LYaoBoL/IOTsec

D-Link DI-8300 v16.07.26A1 is vulnerable to command injection via the upgrade_filter_asp function.

D-Link DI-8300 v16.07.26A1 is vulnerable to command injection via the msp_info_htm function.

D-Link DIR-300 REVA FIRMWARE v1.06B05_WW contains hardcoded credentials in the Telnet service.