CVE-2024-33344 | D-Link DIR-822+ 1.0.5 upload_firmware.cgi ftext command injection

Posted by Angelo Barbosa | Apr 26, 2024 | CVE

A vulnerability was found in D-Link DIR-822+ 1.0.5. It has been classified as critical. Affected is the function ftext of the file upload_firmware.cgi. The manipulation leads to command injection.

This vulnerability is traded as CVE-2024-33344. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-33344 | D-Link DIR-822+ 1.0.5 upload_firmware.cgi ftext command injection

Related Posts

CVE-2023-6767 | SourceCodester Wedding Guest e-Book 1.0 /endpoint/add-guest.php name cross site scripting

CVE-2024-43986 | MagePeople Team Taxi Booking Manager for WooCommerce Plugin up to 1.0.9 on WordPress cross site scripting

CVE-2023-6859 | Mozilla Thunderbird up to 120 TLS Socket use after free

CVE-2024-43303 | videousermanuals White Label CMS Plugin up to 2.7.4 on WordPress cross site scripting