Exploit for D-Link Administrative Password Disclosure Vulnerability

Name: Exploit for D-Link Administrative Password Disclosure Vulnerability
Rating: 5 (66 reviews)

2019-06-27 | CVSS 7.1

## https://sploitus.com/exploit?id=1337DAY-ID-32913
DLink Administrative Password Disclosure Vulnerability

The problem in the following models :

DIR-652   
DIR-615   
DIR-827   
DIR-615   
DIR-657   
DIR-825   

If login to  web interface as "User" or "user" , and navigate to url :  

http://<ip>:port/wizard_wan.asp   

in web code page:

view-source:<ip>:port/wizard_wan.asp

scroll down page and bang :

administrator password in plain text

ports : 8080  or  8081  .


#  0day.today [2019-07-02]  #