VYPR

DCS-2103

by Dlink

CVEs (3)

  • CVE-2014-9517Jan 5, 2015
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in D-link IP camera DCS-2103 with firmware before 1.20 allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING to vb.htm.

  • CVE-2014-9238Dec 3, 2014
    risk 0.00cvss epss 0.02

    D-link IP camera DCS-2103 with firmware 1.0.0 allows remote attackers to obtain the installation path via the file parameter to cgi-bin/sddownload.cgi, as demonstrated by a / (forward slash) character.

  • CVE-2014-9234Dec 3, 2014
    risk 0.00cvss epss 0.03

    Directory traversal vulnerability in cgi-bin/sddownload.cgi in D-link IP camera DCS-2103 with firmware 1.0.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.