Vulnerabilities in D-Link DIR-300

Posted by MustLive on Nov 01

Hello list!

There are Abuse of Functionality, Brute Force and Cross-Site Request Forgery
vulnerabilities in D-Link DIR-300.

————————-
Affected products:
————————-

Vulnerable is the next model: D-Link DIR-300NRUB5, Firmware 1.2.94. All
previous versions also must be vulnerable.

———-
Details:
———-

Abuse of Functionality (WASC-42):

Admin’s login is persistent: admin. Which simplify BF and CSRF…

007 Software