CVE-2013-10062

MEDIUM

Linksys router <1.0.00-1.0.05 - Path Traversal

Title source: llm

Description

A directory traversal vulnerability exists in Linksys router's web interface (tested on the E1500 model firmware versions 1.0.00, 1.0.04, and 1.0.05), specifically in the /apply.cgi endpoint. Authenticated attackers can exploit the next_page POST parameter to access arbitrary files outside the intended web root by injecting traversal sequences. This allows exposure of sensitive system files and configuration data.

Exploits (2)

exploitdb WORKING POC VERIFIED

by m-1-k-3 · textwebappshardware

https://www.exploit-db.com/exploits/24475

View Code ZIP pw:eip

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/linksys_e1500_traversal.rb

View Code ZIP pw:eip

References (4)

[Various Sources] https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/linksys_e1500_traversal.rb

[Various Sources] https://web.archive.org/web/20150428184015/http://www.s3cur1ty.de/m1adv2013-004

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/24475

[Third Party Advisory] https://www.vulncheck.com/advisories/linksys-legacy-routers-path-traversal

Scores

CVSS v4 6.9

EPSS 0.4693

EPSS Percentile 97.7%

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Details

CWE

CWE-22

Status published

Products (3)

Linksys/E1500 1.0.00

Linksys/E1500 1.0.04

Linksys/E1500 1.0.05

Published Aug 01, 2025

Tracked Since Feb 18, 2026