CVE-2023-50206 | D-Link G416 flupl query_type command injection (ZDI-23-1822)

Posted by Angelo Barbosa | Dec 20, 2023 | CVE

A vulnerability has been found in D-Link G416 and classified as critical. Affected by this vulnerability is the function query_type of the component flupl. The manipulation leads to command injection.

This vulnerability is known as CVE-2023-50206. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-50206 | D-Link G416 flupl query_type command injection (ZDI-23-1822)

Related Posts

CVE-2024-42145 | Linux Kernel up to 6.9.8 ib_umad resource consumption

CVE-2024-33818 | Globitel KSA SpeechLog 8.1 userID resource injection

CVE-2024-32816 | PickPlugins Post Grid Plugin up to 2.2.78 on WordPress information disclosure

CVE-2023-6152 | Grafana/Grafana Enterprise prior 9.5.16/10.0.11/10.1.7/10.2.4/10.3.3 Email authorization (GHSA-3hv4-r2fm-h27f)