CSRF in Dlink Dir-816l

CVE-2015-5999

Multiple cross-site request forgery (CSRF) vulnerabilities in the D-Link DIR-816L Wireless Router with firmware before 2.06.B09_BETA allow remote attackers to hijack the authentication of administrators for requests that (1) change the adm…

Vulnerability class: CSRF (Cross-Site Request Forgery)

EPSS: 0.032 (86.6th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

Public proof-of-concept exploits

References

Frequently asked questions

What is CVE-2015-5999?
CVE-2015-5999 is a vulnerability in Dlink Dir-816l, classified under Cross-Site Request Forgery (CSRF). Published 2015-11-18.
Is CVE-2015-5999 known to be exploited?
1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.