Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-5536Path Traversal in D-link Dsl-g624t

4 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
5.1%
top 10.20%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
D-link Dsl-g624t
Timeline
PublishedOct 26
Latest updateMay 1

Description

Directory traversal vulnerability in cgi-bin/webcm in D-Link DSL-G624T firmware 3.00B01T01.YA-C.20060616 allows remote attackers to read arbitrary files via a .. (dot dot) in the getpage parameter.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDd-link/dsl-g624tfirmware_3.00b01t01.ya_c.2006-06-16

🔴Vulnerability Details

2
GHSA
GHSA-vmxh-c7g7-xw6f: Directory traversal vulnerability in cgi-bin/webcm in D-Link DSL-G624T firmware 32022-05-01
CVEList
CVE-2006-5536: Directory traversal vulnerability in cgi-bin/webcm in D-Link DSL-G624T firmware 32006-10-26

💥Exploits & PoCs

1
Exploit-DB
D-Link DSL-G624T - Information Disclosure2006-10-23
CVE-2006-5536 — Path Traversal in D-link Dsl-g624t | cvebase