CVE-2026-8271 – D-Link DNS-320 network_mgr.cgi cgi_upnp_edit os command injection

CVE ID :CVE-2026-8271

Published : May 11, 2026, 5:16 a.m. | 51 minutes ago

Description :A vulnerability was identified in D-Link DNS-320 2.06B01. The impacted element is the function cgi_speed/cgi_dhcpd_lease/cgi_ddns/cgi_set_ip/cgi_upnp_del/cgi_dhcpd/cgi_upnp_add/cgi_upnp_edit of the file /cgi-bin/network_mgr.cgi. The manipulation leads to os command injection. The attack is possible to be carried out remotely. The exploit is publicly available and might be used.

Severity: 5.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-8280 – Allocation of Resources Without Limits or Throttling in GitLab

CVE-2026-7481 – Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) in GitLab

CVE-2026-7471 – Server-Side Request Forgery (SSRF) in GitLab

CVE-2026-8181 – Burst Statistics 3.4.0 – 3.4.1.1 – Authentication Bypass to Admin Account Takeover