CVE-2026-1419 | D-Link DCS700l 1.03.09 Web Form /setDayNightMode LightSensorControl command injection

Inserito da Angelo Barbosa | Gen 25, 2026 | CVE

A vulnerability labeled as critical has been found in D-Link DCS700l 1.03.09. Affected is an unknown function of the file /setDayNightMode of the component Web Form Handler. Executing a manipulation of the argument LightSensorControl can lead to command injection.

The identification of this vulnerability is CVE-2026-1419. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-1419 | D-Link DCS700l 1.03.09 Web Form /setDayNightMode LightSensorControl command injection

Post correlati

CVE-2023-6366 | Progress WhatsUp Gold up to 2022.1 Alert Center cross site scripting

CVE-2025-44881 | WAVLINK WL-WN579A3 1.0 /cgi-bin/qos.cgi command injection

CVE-2024-37172 | SAP S4HANA Finance 107/108 Advanced Payment Management authorization

CVE-2023-50061 | Op’art Easy Redirect Module 1.3.8/1.3.9/1.3.10/1.3.11/1.3.12 on PrestaShop hookActionDispatcher sql injection