Contribution: DLink Authentication Bypass 11/09/10 also affect...
hkm opened this issue · comments
"DLink Authentication Bypass 11/09/10 also affect DLink DAP-2553
(in your list: DIR-615, DIR-320, DIR-300 Authentication Bypass)
(reference: http://www.devttys0.com/wp-content/uploads/2010/12/dlink_php_vulnerability.pdf)
I also discover the possibility of read admin password by loading
http://192.168.0.1/tool_admin.php?NO_NEED_AUTH=1&AUTH_GROUP=0
(instead of http://192.168.0.1/bsc_lan.php?NO_NEED_AUTH=1&AUTH_GROUP=0)
and change the input type of form element ""old_password"" from ""password"" to ""text""
The andmin password will be shown in plain text! ;-D"
Lorenzo Santina BigNerd95