CVEs-PoC/2018/CVE-2018-6530.md at bc4580b7799602bfe4618c8fe9ddff9c2dfdfc86

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-08 14:24:48 +02:00

Files

T

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMWARE_PATCH_1.08B04 and previous versions, DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-65L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote attackers to execute arbitrary OS commands via the service parameter.

POC

Reference

https://github.com/TheBeeMan/Pwning-multiple-dlink-router-via-SOAP-proto

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/Ostorlab/KEV
https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
https://github.com/WhereisRain/dir-815
https://github.com/pen4uin/awesome-vulnerability-research
https://github.com/pen4uin/vulnerability-research
https://github.com/pen4uin/vulnerability-research-list
https://github.com/soh0ro0t/Pwn-Multiple-Dlink-Router-Via-Soap-Proto
https://github.com/zyw-200/EQUAFL_setup

1.3 KiB Raw Blame History

CVE-2018-6530

Description

POC

Reference

Github

1.3 KiB

Raw Blame History