CVE-2026-2260

High CVSS: 7.3

A vulnerability was found in D-Link DCS-931L up to 1.13.0. This affects an unknown part of the file /goform/setSysAdmin. The manipulation of the argument AdminID results in os command injection. The attack can be executed remotely. The exploit has been made public and could be used. This vulnerability only affects products that are no longer supported by the maintainer.

Vendor

Dlink

Product

Dcs-931l Firmware

CWE

CWE-77

Yayın Tarihi

2026-02-10 04:16:05

Güncelleme

2026-02-12 15:33:09

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-77 Dcs-931l Firmware HIGH Dlink 2026

Referanslar

https://github.com/cha0yang1/CVE/blob/main/DLinkRce.md https://github.com/cha0yang1/CVE/blob/main/DLinkRce.md#poc https://vuldb.com/?ctiid.345007 https://vuldb.com/?id.345007 https://vuldb.com/?submit.753398 https://www.dlink.com/

Benzer Kayıtlar

High

CVE-2026-5214

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-32…

Medium

CVE-2026-5215

A vulnerability was identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…

High

CVE-2026-5213

A vulnerability was determined in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…

High

CVE-2026-5212

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…

High

CVE-2026-5211

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, D…

High

CVE-2026-5024

A vulnerability was found in D-Link DIR-513 1.10. This issue affects the function formSetEmail of the file /goform/formS…