CVE-2025-60701 | D-Link DIR-882 FW102B02 HTTP prog.cgi sub_433188 command injection

November 13, 2025 Yanac

A vulnerability categorized as critical has been discovered in D-Link DIR-882 FW102B02. This impacts the function sub_433188 of the file prog.cgi of the component HTTP Handler. Such manipulation of the argument EmailFrom/EmailTo/SMTPServerAddress/SMTPServerPort/AccountName leads to command injection.

This vulnerability is documented as CVE-2025-60701. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More