Filtered by vendor Dlink Subscriptions
Filtered by product Dir-100 Subscriptions
Total 7 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2013-7055 1 Dlink 2 Dir-100, Dir-100 Firmware 2024-11-21 9.8 Critical
D-Link DIR-100 4.03B07 has PPTP and poe information disclosure
CVE-2013-7054 1 Dlink 2 Dir-100, Dir-100 Firmware 2024-11-21 6.1 Medium
D-Link DIR-100 4.03B07: cli.cgi XSS
CVE-2013-7053 1 Dlink 2 Dir-100, Dir-100 Firmware 2024-11-21 8.8 High
D-Link DIR-100 4.03B07: cli.cgi CSRF
CVE-2013-7052 1 Dlink 2 Dir-100, Dir-100 Firmware 2024-11-21 9.8 Critical
D-Link DIR-100 4.03B07: security bypass via an error in the cliget.cgi script
CVE-2013-7051 1 Dlink 2 Dir-100, Dir-100 Firmware 2024-11-21 8.8 High
D-Link DIR-100 4.03B07: cli.cgi security bypass due to failure to check authentication parameters
CVE-2013-6027 1 Dlink 1 Dir-100 2024-11-21 N/A
Stack-based buffer overflow in the RuntimeDiagnosticPing function in /bin/webs on D-Link DIR-100 routers might allow remote authenticated administrators to execute arbitrary commands via a long set/runtime/diagnostic/pingIp parameter to Tools/tools_misc.xgi.
CVE-2013-6026 3 Alphanetworks, Dlink, Planex 13 Vdsl Asl-55052, Vdsl Asl-56552, Di-524up and 10 more 2024-11-21 N/A
The web interface on D-Link DIR-100, DIR-120, DI-624S, DI-524UP, DI-604S, DI-604UP, DI-604+, and TM-G5240 routers; Planex BRL-04R, BRL-04UR, and BRL-04CW routers; and Alpha Networks routers allows remote attackers to bypass authentication and modify settings via an xmlset_roodkcableoj28840ybtide User-Agent HTTP header, as exploited in the wild in October 2013.