CVE-2018-25120

CRITICAL EXPLOITED

D-Link DNS-343 ShareCenter <1.05 - Command Injection

Title source: llm

Exploitation Summary

CVE-2018-25120 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including GulfTech Security.

AI-analyzed exploit summary This is a detailed writeup describing a command injection vulnerability in D-Link DNS-343 ShareCenter <= 1.05. The vulnerability allows unauthenticated remote attackers to execute arbitrary commands as root via the '/goform/Mail_Test' endpoint.

Description

D-Link DNS-343 ShareCenter devices running firmware versions up to and including 1.05 contain a command injection vulnerability in the Mail Test functionality. The web maintenance script posts to the internal goForm endpoint '/goform/Mail_Test' and uses several form parameters directly in a call to a system email utility without proper input validation. An unauthenticated remote attacker can supply crafted form data that injects shell commands, resulting in execution as root on the device. NOTE: The DNS-343 product line has been declared end-of-life.

Exploits (1)

exploitdb WRITEUP

by GulfTech Security · textwebappsphp

https://www.exploit-db.com/exploits/43845

View Code ZIP pw:eip

This is a detailed writeup describing a command injection vulnerability in D-Link DNS-343 ShareCenter <= 1.05. The vulnerability allows unauthenticated remote attackers to execute arbitrary commands as root via the '/goform/Mail_Test' endpoint.

Classification

Writeup 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: D-Link DNS-343 ShareCenter <= 1.05

No auth needed

Prerequisites: Network access to the target device

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Exploit exploit

https://www.exploit-db.com/exploits/43845

Third Party Advisory exploit

https://qkl.seebug.org/vuldb/ssvid-97088

Product product

https://www.dlink.com/al/sq/products/dns-343-sharecenter-4-bay-network-storage-enclosure

Third Party Advisory technical-description exploit

https://github.com/jamesbercegay/advisories/blob/master/%5BGTSA-00128%5D%20D-Link%20DNS-343%20ShareCenter%201.05%20Remote%20Root.txt

View Writeup ZIP pw:eip

Third Party Advisory third-party-advisory

https://www.vulncheck.com/advisories/dlink-dns343-sharecenter-command-injection-via-goform-mail-test

Scores

CVSS v3 9.8

EPSS 0.0851

EPSS Percentile 94.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

VulnCheck KEV 2025-10-29

CWE

CWE-78

Status published

Products (2)

D-Link/DNS-343 ShareCenter < 1.05

dlink/dns-343_firmware < 1.0.5

Published Oct 29, 2025

Tracked Since Feb 18, 2026