vinod kumar shrimali

5 exploits Active since Nov 2024
CVE-2024-28726 WRITEUP HIGH SUSPICIOUS
DLink DWR 2000M - RCE
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME allows a local attacker to execute arbitrary code via a crafted payload to the Diagnostics function.
CVSS 8.0
CVE-2024-28728 WRITEUP MEDIUM SUSPICIOUS
DLink DWR 2000M - XSS
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME allows a local attacker to obtain sensitive information via a crafted payload to the WiFi SSID Name field.
CVSS 6.6
CVE-2024-28729 WRITEUP CRITICAL SUSPICIOUS
Dlink Dwr-2000m Firmware - Command Injection
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME allows a local attacker to execute arbitrary code via a crafted request.
CVSS 9.8
CVE-2024-28730 WRITEUP MEDIUM SUSPICIOUS
Dlink Dwr-2000m Firmware - XSS
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME allows a local attacker to obtain sensitive information via the file upload feature of the VPN configuration module.
CVSS 5.4
CVE-2024-28731 WRITEUP MEDIUM SUSPICIOUS
Dlink Dwr-2000m Firmware - CSRF
Cross Site Request Forgery vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME allows a local attacker to obtain sensitive information via the Port forwarding option.
CVSS 4.3