CVE-2026-2210 | HackTesting

A vulnerability has been found in D-Link DIR-823X 250416. This affects the function sub_4211C8 of the file /goform/set_filtering. Such manipulation leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Credits

junqi (VulDB User)

References

https://vuldb.com/?id.344925

https://vuldb.com/?ctiid.344925

https://vuldb.com/?submit.752165

https://github.com/master-abc/cve/issues/34

https://github.com/user-attachments/files/25010265/Remote.Command.Injection.in.D-Link.DIR-823X.via._goform_set_filtering.zip

https://www.dlink.com/