CVE-2023-50206 | D-Link G416 flupl query_type command injection (ZDI-23-1822)

Posted by Angelo Barbosa | Dec 20, 2023 | CVE

A vulnerability has been found in D-Link G416 and classified as critical. Affected by this vulnerability is the function query_type of the component flupl. The manipulation leads to command injection.

This vulnerability is known as CVE-2023-50206. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-50206 | D-Link G416 flupl query_type command injection (ZDI-23-1822)

Related Posts

CVE-2024-36460 | Zabbix up to 5.0.42/6.0.30/6.4.15/7.0.0rc2 Front-end Audit Log credentials storage

CVE-2024-3665 | Rank Math SEO with AI SEO Tools Plugin up to 1.0.216 on WordPress titleWrapper cross site scripting

CVE-2023-49675 | CODESYS Development System prior 2.3.9.73 Project File out-of-bounds write (VDE-2024-024)

CVE-2023-29050 | Open-Xchange OX App Suite up to 7.10.6-rev50/8.16 LDAP Contacts Provider ldap injection (oxas-adv-2023-0005)