CVE-2026-2081 | D-Link DIR-823X 250416 /goform/set_password http_passwd os command injection

Inserito da Angelo Barbosa | Feb 6, 2026 | CVE

A vulnerability identified as critical has been detected in D-Link DIR-823X 250416. The affected element is an unknown function of the file /goform/set_password. This manipulation of the argument http_passwd causes os command injection.

This vulnerability is tracked as CVE-2026-2081. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2026-2081 | D-Link DIR-823X 250416 /goform/set_password http_passwd os command injection

Post correlati

CVE-2024-31370 | CodeIsAwesome AIKit Plugin up to 4.14.1 on WordPress sql injection

CVE-2024-4895 | wpDataTables Plugin up to 3.4.2.12 on WordPress CSV Import cross site scripting

CVE-2023-45600 | AiLux imx6 up to 1.0.7-1 session expiration

CVE-2023-41954 | ProfilePress Plugin up to 4.13.1 on WordPress privileges management