Vulnerabilities (CVE)

Filtered by vendor D-link Subscribe
Filtered by product Dsl-g604t
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-1253 1 D-link 1 Dsl-g604t 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in cgi-bin/webcm on the D-Link DSL-G604T router allows remote attackers to inject arbitrary web script or HTML via the var:category parameter, as demonstrated by a request for advanced/portforw.htm on the fwan page.
CVE-2006-2337 1 D-link 1 Dsl-g604t 2024-11-21 5.0 MEDIUM N/A
Directory traversal vulnerability in webcm in the D-Link DSL-G604T Wireless ADSL Router Modem allows remote attackers to read arbitrary files via an absolute path in the getpage parameter.
CVE-2005-1680 1 D-link 4 Dsl-502t, Dsl-504t, Dsl-562t and 1 more 2024-11-20 7.5 HIGH N/A
D-Link DSL-502T, DSL-504T, DSL-562T, and DSL-G604T, when /cgi-bin/firmwarecfg is executed, allows remote attackers to bypass authentication (1) if their IP address already exists in /var/tmp/fw_ip or (2) if their request is the first, which causes /var/tmp/fw_ip to be created and contain their IP address.