CVE-2013-10050
HIGHD-Link DIR-300/615 - Command Injection
Title source: llmDescription
An OS command injection vulnerability exists in multiple D-Link routers—confirmed on DIR-300 rev A (v1.05) and DIR-615 rev D (v4.13)—via the authenticated tools_vct.xgi CGI endpoint. The web interface fails to properly sanitize user-supplied input in the pingIp parameter, allowing attackers with valid credentials to inject arbitrary shell commands. Exploitation enables full device compromise, including spawning a telnet daemon and establishing a root shell. The vulnerability is present in firmware versions that expose tools_vct.xgi and use the Mathopd/1.5p6 web server. No vendor patch is available, and affected models are end-of-life.
Exploits (3)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotehardware
https://www.exploit-db.com/exploits/27428
metasploit
WORKING POC
EXCELLENT
rubypocunix
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/dlink_dir300_exec_telnet.rb
exploitdb
WORKING POC
VERIFIED
by m-1-k-3 · textwebappshardware
https://www.exploit-db.com/exploits/25024
References (6)
Scores
CVSS v3
8.8
EPSS
0.6192
EPSS Percentile
98.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Classification
CWE
CWE-78
Status
published
Affected Products (2)
dlink/dir-300_firmware
< 1.05
dlink/dir-615_firmware
< 4.13
Timeline
Published
Aug 01, 2025
Tracked Since
Feb 18, 2026