📦 Dir 300 Firmware

This CVE describes an unauthenticated remote command execution vulnerability in legacy D-Link routers. Attackers can send specially crafted POST requests to the command.php endpoint to execute arbitra...

D-Link DIR-300 REVA routers running firmware v1.06B05_WW contain hardcoded credentials in their Telnet service, allowing attackers to gain administrative access. This affects all users of these specif...

This CVE describes a file inclusion vulnerability in D-Link DIR-300 routers that allows attackers to include arbitrary files from the filesystem via the /model/__lang_msg.php endpoint. Attackers can p...

This CVE describes an authenticated OS command injection vulnerability in multiple D-Link router models that allows attackers with valid credentials to execute arbitrary shell commands. Successful exp...