Multiple SQL injection vulnerabilities in the administration login page in D-Link DAP-1350 (Rev. A1) with firmware 1.14 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password.
CPE | Name | Operator | Version |
---|---|---|---|
dap-1350 | eq | rev.-a1 | |
dap-1350_firmware | le | 1.14 | |
dap-1350_firmware | eq | 1.10 |