CVE-2013-10050
HIGHD-Link DIR-300/615 - Command Injection
Title source: llmDescription
An OS command injection vulnerability exists in multiple D-Link routers—confirmed on DIR-300 rev A (v1.05) and DIR-615 rev D (v4.13)—via the authenticated tools_vct.xgi CGI endpoint. The web interface fails to properly sanitize user-supplied input in the pingIp parameter, allowing attackers with valid credentials to inject arbitrary shell commands. Exploitation enables full device compromise, including spawning a telnet daemon and establishing a root shell. The vulnerability is present in firmware versions that expose tools_vct.xgi and use the Mathopd/1.5p6 web server. No vendor patch is available, and affected models are end-of-life.
Exploits (3)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotehardware
https://www.exploit-db.com/exploits/27428
exploitdb
WORKING POC
VERIFIED
by m-1-k-3 · textwebappshardware
https://www.exploit-db.com/exploits/25024
metasploit
WORKING POC
EXCELLENT
rubypocunix
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/dlink_dir300_exec_telnet.rb
References (6)
Scores
CVSS v3
8.8
EPSS
0.6546
EPSS Percentile
98.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-78
Status
published
Products (4)
D-Link/DIR-300 rev A
< 1.05
D-Link/DIR-615 rev D
< 4.13
dlink/dir-300_firmware
< 1.05
dlink/dir-615_firmware
< 4.13
Published
Aug 01, 2025
Tracked Since
Feb 18, 2026