CVE-2018-17442
published 2018-10-08CVE-2018-17442: An issue was discovered on D-Link Central WiFi Manager before v 1.03r0100-Beta1. An unrestricted file upload vulnerability in the onUploadLogPic endpoint…
high8.8CVSS 3.0
AVNACLPRLUINSUCHIHAH
EXPLOIT
An issue was discovered on D-Link Central WiFi Manager before v 1.03r0100-Beta1. An unrestricted file upload vulnerability in the onUploadLogPic endpoint allows remote authenticated users to execute arbitrary PHP code.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dlink | central_wifimanager | >= 1.00 < 1.03 | 1.03 |