CVE-2026-5311 | D-Link DNS-1550-04 up to 20260205 /cgi-bin/file_center.cgi Webdav_Access_List cmd access control

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. It has been classified as critical. Affected is the function Webdav_Access_List of the file /cgi-bin/file_center.cgi. Performing a manipulation of the argument cmd results in improper access controls.

This vulnerability is cataloged as CVE-2026-5311. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2026-5311 | D-Link DNS-1550-04 up to 20260205 /cgi-bin/file_center.cgi Webdav_Access_List cmd access control

Post correlati

CVE-2025-15415 | xnx3 wangmarket up to 6.4 XML File /sits/uploadImage.do uploadImage image unrestricted upload

CVE-2023-6813 | Auth0 Login Plugin up to 4.6.0 on WordPress wle cross site scripting

CVE-2024-55075 | Grocy up to 4.3.0 direct request

CVE-2024-53734 | Idealien Studios Idealien Category Enhancements Plugin up to 1.2 on WordPress cross-site request forgery