dest-3

2 exploits Active since Jan 2023

CVE-2023-46012 NOMISEC CRITICAL WORKING POC

LINKSYS EA7500 3.0.1.207964 - Buffer Overflow

Buffer Overflow vulnerability LINKSYS EA7500 3.0.1.207964 allows a remote attacker to execute arbitrary code via an HTTP request to the IGD UPnP.

6 stars

CVSS 9.8

View Code

CVE-2022-47052 NOMISEC MEDIUM WRITEUP

Nighthawk R6220 AC1200 - CRLF Injection

The web interface of the 'Nighthawk R6220 AC1200 Smart Wi-Fi Router' is vulnerable to a CRLF Injection attack that can be leveraged to perform Reflected XSS and HTML Injection. A malicious unauthenticated attacker can exploit this vulnerability using a specially crafted URL. This affects firmware versions: V1.1.0.112_1.0.1, V1.1.0.114_1.0.1.

CVSS 6.1

View Code