Backdoor authentication bypass + command injection vulnerability. Script exploits CVE-2024-3272 + CVE-2024-3273.
Originally discovered @necsecfish - https://github.com/netsecfish/dlink
UNTESTED exploit script for CVE-2024-3272 + CVE-2024-3273. The script exploits a backdoor authentication bypass + arbitrary command injection vulnerability.
Python
Backdoor authentication bypass + command injection vulnerability. Script exploits CVE-2024-3272 + CVE-2024-3273.
Originally discovered @necsecfish - https://github.com/netsecfish/dlink