CVE-2018-17787
On D-Link DIR-823G devices, the GoAhead configuration allows /HNAP1 Command Injection via shell metacharacters in the POST data, because this data is sent directly to the "system" library function.
Learn more about our Web Application Penetration Testing UK.
Learn more about our Web Application Penetration Testing UK.