D-Link Arbitrary File Read Vulnerability Scanner

Details
Stay Up To Date
Asset Type

DOMAIN,IP,URL

Need Membership

Yes

Asset Verify

Yes

API Support

Yes

Estimate Time (Second)

5

D-Link Arbitrary File Read Vulnerability Scanner Detail

There is a arbitrary file read vulnerability in the D-Link access point devices, which allow remote attackers to read arbitrary files.

When sending a login request we are provided with several POST options. We can use the errorpage= tag to get redirected to an arbitrary page after a failed login request thus leaking arbitrary system files.

Some Advice for Common Problems

  • You need to apply related fixes.
  • Sanitize all parameters received as input from the user.

Community Discussions

Need a Full Assesment?

Get help from professional hackers. Learn about our penetration test service now!

Request Pentest Service