mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 09:12:08 +00:00
774 B
774 B
CVE-2019-12786
Description
An issue was discovered on D-Link DIR-818LW devices from 2.05.B03 to 2.06B01 BETA. There is a command injection in HNAP1 SetWanSettings via an XML injection of the value of the IPAddress key.
POC
Reference
- https://github.com/TeamSeri0us/pocs/blob/master/iot/dlink/dir818-protected.pdf
- https://github.com/TeamSeri0us/pocs/blob/master/iot/dlink/dir818-protected.pdf
Github
No PoCs found on GitHub currently.