## https://sploitus.com/exploit?id=1337DAY-ID-32913
DLink Administrative Password Disclosure Vulnerability
The problem in the following models :
DIR-652
DIR-615
DIR-827
DIR-615
DIR-657
DIR-825
If login to web interface as "User" or "user" , and navigate to url :
http://<ip>:port/wizard_wan.asp
in web code page:
view-source:<ip>:port/wizard_wan.asp
scroll down page and bang :
administrator password in plain text
ports : 8080 or 8081 .
# 0day.today [2019-07-02] #