2025-12-22 21:35:33
VulnCheck
PUBLISHED
D-Link DSL-124 ME_1.00 contains a configuration file disclosure vulnerability that allows unauthenticated attackers to retrieve router settings through a POST request. Attackers can send a specific POST request to the routers configuration endpoint to download a complete backup file containing sensitive network credentials and system configurations.