cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-42812,https://securityvulnerability.io/vulnerability/CVE-2024-42812,Buffer Overflow Vulnerability in DIR-860L v2.03 Could Lead to Crash or Arbitrary Command Execution,"The D-Link DIR-860L router version 2.03 is subject to a buffer overflow vulnerability linked to improper handling of the SID field in gena.cgi. The flaws in length verification can be exploited remotely, enabling attackers to potentially crash the device or run arbitrary commands. This vulnerability underscores significant risks for users, necessitating immediate actions to secure their networks and prevent unauthorized access.",D-Link,Dir-860l Firmware,9.8,CRITICAL,0.0010000000474974513,false,false,false,false,,false,false,2024-08-19T20:15:00.000Z,0
CVE-2018-6527,https://securityvulnerability.io/vulnerability/CVE-2018-6527,,"XSS vulnerability in htdocs/webinc/js/adv_parent_ctrl_map.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote attackers to read a cookie via a crafted deviceid parameter to soap.cgi.",D-Link,Dir-860l Firmware,6.1,MEDIUM,0.00203999993391335,false,false,false,false,,false,false,2018-03-06T20:00:00.000Z,0
CVE-2018-6528,https://securityvulnerability.io/vulnerability/CVE-2018-6528,,"XSS vulnerability in htdocs/webinc/body/bsc_sms_send.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote attackers to read a cookie via a crafted receiver parameter to soap.cgi.",D-Link,Dir-860l Firmware,6.1,MEDIUM,0.00203999993391335,false,false,false,false,,false,false,2018-03-06T20:00:00.000Z,0
CVE-2018-6529,https://securityvulnerability.io/vulnerability/CVE-2018-6529,,"XSS vulnerability in htdocs/webinc/js/bsc_sms_inbox.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote attackers to read a cookie via a crafted Treturn parameter to soap.cgi.",D-Link,Dir-860l Firmware,6.1,MEDIUM,0.00203999993391335,false,false,false,false,,false,false,2018-03-06T20:00:00.000Z,0
CVE-2018-6530,https://securityvulnerability.io/vulnerability/CVE-2018-6530,,"OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMWARE_PATCH_1.08B04 and previous versions, DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-65L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote attackers to execute arbitrary OS commands via the service parameter.",D-Link,Dir-860l Firmware,9.8,CRITICAL,0.924019992351532,true,false,true,true,,false,false,2018-03-06T20:00:00.000Z,0