CVE-2025-10123 | D-Link DIR-823X up to 250416 set_static_leases sub_415028 Hostname command injection

Inserito da Angelo Barbosa | Set 8, 2025 | CVE

A vulnerability classified as critical was found in D-Link DIR-823X up to 250416. Affected by this vulnerability is the function sub_415028 of the file /goform/set_static_leases. Executing manipulation of the argument Hostname can lead to command injection.

This vulnerability is tracked as CVE-2025-10123. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2025-10123 | D-Link DIR-823X up to 250416 set_static_leases sub_415028 Hostname command injection

Post correlati

CVE-2024-34760 | WPBlockart Magazine Blocks Plugin up to 1.3.6 on WordPress cross site scripting

CVE-2023-51154 | JIZHICMS 2.5 PluginsController.php information disclosure

CVE-2025-26960 | enituretechnology Small Package Quotes Plugin up to 2.4.9 on WordPress authorization

CVE-2024-5382 | Master Addons Plugin up to 2.0.6.1 on WordPress Template authorization