CVEs-PoC/2021/CVE-2021-27113.md at 52f3262c8d52545fc4e20c2a38454fc446c51385

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-26 13:37:50 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

An issue was discovered in D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction within the handler function of the /goform/addRouting route. This could lead to Command Injection via Shell Metacharacters.

POC

Reference

https://github.com/GD008/vuln/blob/main/DIR-816_2.md
https://github.com/GD008/vuln/blob/main/DIR-816_2.md
https://www.dlink.com/en/security-bulletin/
https://www.dlink.com/en/security-bulletin/

Github

https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors

911 B Raw Blame History

CVE-2021-27113

Description

POC

Reference

Github

911 B

Raw Blame History