D-Link

https://www.cve.org/CVERecord?id=CVE-2025-13562

Davantis

https://www.cve.org/CVERecord?id=CVE-2025-41016

https://www.cve.org/CVERecord?id=CVE-2025-41017

cc: @Dio9sys @da_667

#internetOfShit

@cR0w @Dio9sys thank u

@cR0w

@da_667

me @ you for being my vuln dealer

@Dio9sys @cR0w @da_667 something about the first cve being free

@nyanbinary @Dio9sys @da_667 Just prepping the GAYINT cash flow for that first round of funding.

@cR0w @Dio9sys for whatever its worth, I have never seen the HTTP SUBSCRIBE method before.

@da_667 @cR0w @Dio9sys

@buherator @Dio9sys @cR0w @mttaggart whatever it is in this case, it's being requested over plain HTTP and results in command injection.

https://github.com/YZS17/CVE/blob/main/DLink/DLink-DIR852/RCE2.md

@buherator

*WebDAV

@Dio9sys @cR0w @da_667 @mttaggart

@mttaggart @da_667 @cR0w @Dio9sys
What about HTTP LIKE and COMMENT

@tehfishman @mttaggart @cR0w @Dio9sys dont forget to scrubscribe

@da_667 @tehfishman @cR0w @Dio9sys RFC incoming for HTTP SMASHTHEBUTTON and HTTP RINGTHEBELL

@mttaggart @da_667 @tehfishman @Dio9sys If I start seeing these verbs in my web logs I'm going to release the Internet-eating sharks.

@mttaggart @da_667 @tehfishman @Dio9sys That's a lie. I think we all know that if I had any they would have been released a long time ago.