CVE-2026-2152

all versions

A vulnerability was found in D-Link DIR-615 4.10. This vulnerability affects unknown code of the file adv_routing.php of the compo

7.2HIGH

CVE-2026-2151

all versions

A vulnerability has been found in D-Link DIR-615 4.10. This affects an unknown part of the file adv_firewall.php of the component

7.2HIGH

CVE-2026-1506

all versions

A vulnerability was determined in D-Link DIR-615 4.10. Impacted is an unknown function of the file /adv_mac_filter.php of the comp

7.2HIGH

CVE-2026-1505

all versions

A vulnerability was found in D-Link DIR-615 4.10. This issue affects some unknown processing of the file /set_temp_nodes.php of th

7.2HIGH

CVE-2026-1448

<= 4.10

A vulnerability was detected in D-Link DIR-615 up to 4.10. This impacts an unknown function of the file /wiz_policy_3_machine.php

7.2HIGH

CVE-2018-25115

all versions

Multiple D-Link DIR-series routers, including DIR-110, DIR-412, DIR-600, DIR-610, DIR-615, DIR-645, and DIR-815 firmware version 1

9.8CRITICAL

CVE-2013-10050

<= 4.13

An OS command injection vulnerability exists in multiple D-Link routers (confirmed on DIR-300 rev A v1.05 and DIR-615 rev D v4.13)

8.8HIGH

CVE-2024-0717

<= 2024-01-12

A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR

5.3MEDIUM

CVE-2021-42627

all versions

The WAN configuration page "wan.htm" on D-Link DIR-615 devices with firmware 20.06 can be accessed directly without authentication

9.8CRITICAL

CVE-2021-40654

all versions

An information disclosure issue exist in D-LINK-DIR-615 B2 2.01mt. An attacker can obtain a user name and password by forging a po

6.5MEDIUM

CVE-2021-37388

all versions

A buffer overflow in D-Link DIR-615 C2 3.03WW. The ping_ipaddr parameter in ping_response.cgi POST request allows an attacker to c

9.8CRITICAL

CVE-2019-17525

all versions

The login page on D-Link DIR-615 T1 20.10 devices allows remote attackers to bypass the CAPTCHA protection mechanism and conduct b

8.8HIGH

CVE-2019-19742

all versions

On D-Link DIR-615 devices, the User Account Configuration page is vulnerable to blind XSS via the name field.

4.8MEDIUM

CVE-2019-17353

all versions

An issue discovered on D-Link DIR-615 devices with firmware version 20.05 and 20.07. wan.htm can be accessed directly without auth

8.2HIGH

CVE-2019-16920

all versions

Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. The issue occur

9.8CRITICAL

CVE-2018-15839

all versions

D-Link DIR-615 devices have a buffer overflow via a long Authorization HTTP header.

9.8CRITICAL

CVE-2018-15875

all versions

Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows attackers to inject JavaScript into the router's a

6.1MEDIUM

CVE-2018-15874

all versions

Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status

6.1MEDIUM

CVE-2018-10431

all versions

D-Link DIR-615 2.5.17 devices allow Remote Code Execution via shell metacharacters in the Host field of the System / Traceroute sc

7.2HIGH

CVE-2017-9542

all versions

D-Link DIR-615 Wireless N 300 Router allows authentication bypass via a modified POST request to login.cgi. This issue occurs beca

9.8CRITICAL

CVE-2017-7398

all versions

D-Link DIR-615 HW: T1 FW:20.09 is vulnerable to Cross-Site Request Forgery (CSRF) vulnerability. This enables an attacker to perfo

8.8HIGH

CVE-2014-8361

<= 6.06b03

The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request,

9.8CRITICAL