Dlink Dir-803 Firmware vulnerabilities

CVE-2025-14528 [MEDIUM] CWE-200 CVE-2025-14528: A vulnerability was detected in D-Link DIR-803 up to 1.04. Impacted is an unknown function of the fi A vulnerability was detected in D-Link DIR-803 up to 1.04. Impacted is an unknown function of the file /getcfg.php of the component Configuration Handler. The manipulation of the argument AUTHORIZED_GROUP results in information disclosure. The attack may be performed from remote. The exploit is now public and may be used. This vulnerability only aff

CVE-2020-25786 [MEDIUM] CWE-79 CVE-2020-25786: webinc/js/info.php on D-Link DIR-816L 2.06.B09_BETA and DIR-803 1.04.B02 devices allows XSS via the webinc/js/info.php on D-Link DIR-816L 2.06.B09_BETA and DIR-803 1.04.B02 devices allows XSS via the HTTP Referer header. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: this is typically not exploitable because of URL encoding (except in Internet Explorer) and because a web page cannot specify that