Bug Bounty

All about electronic devices security
https://mail.bugbounty.com.au/

Authenticated OS Command Injection in D‑Link DIR‑615H1 via tools_vct.htm ping_ipaddr Parameter

https://mail.bugbounty.com.au/viewtopic.php?t=6733

Page 1 of 1

Authenticated OS Command Injection in D‑Link DIR‑615H1 via tools_vct.htm ping_ipaddr Parameter

Posted: Sun Aug 03, 2025 4:40 am
by Shane1145
An authenticated OS command injection vulnerability exists in various D-Link routers (tested on DIR-615H1 running firmware version 8.04) via the tools_vct.htm endpoint. The web interface fails to sanitize input passed from the ping_ipaddr parameter to the tools_vct.htm diagnostic interface, allowing attackers to inject arbitrary shell commands using backtick encapsulation. With default credentials, an attacker can exploit this blind injection vector to execute arbitrary commands.

https://www.tenable.com/cve/CVE-2013-10059
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited