CVE-2013-10062

A directory traversal vulnerability exists in Linksys router's web interface (tested on the E1500 model firmware versions 1.0.00, 1.0.04, and 1.0.05), specifically in the /apply.cgi endpoint. Authenticated attackers can exploit the next_page POST parameter to access arbitrary files outside the intended web root by injecting traversal sequences. This allows exposure of sensitive system files and configuration data.

CVSS

No CVSS.

References

Link	Resource
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/linksys_e1500_traversal.rb
https://web.archive.org/web/20150428184015/http://www.s3cur1ty.de/m1adv2013-004
https://www.exploit-db.com/exploits/24475
https://www.vulncheck.com/advisories/linksys-legacy-routers-path-traversal
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/linksys_e1500_traversal.rb
https://www.exploit-db.com/exploits/24475
https://web.archive.org/web/20150428184015/http://www.s3cur1ty.de/m1adv2013-004

Configurations

No configuration.

History

01 Aug 2025, 21:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-01 21:15

Updated : 2025-08-06 14:15

NVD link : CVE-2013-10062

Mitre link : CVE-2013-10062

JSON object : View

Products Affected

No product.

CWE

No CWE.

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/linksys_e1500_traversal.rb", "name": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/linksys_e1500_traversal.rb", "tags": [], "refsource": ""}, {"url": "https://web.archive.org/web/20150428184015/http://www.s3cur1ty.de/m1adv2013-004", "name": "https://web.archive.org/web/20150428184015/http://www.s3cur1ty.de/m1adv2013-004", "tags": [], "refsource": ""}, {"url": "https://www.exploit-db.com/exploits/24475", "name": "https://www.exploit-db.com/exploits/24475", "tags": [], "refsource": ""}, {"url": "https://www.vulncheck.com/advisories/linksys-legacy-routers-path-traversal", "name": "https://www.vulncheck.com/advisories/linksys-legacy-routers-path-traversal", "tags": [], "refsource": ""}, {"url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/linksys_e1500_traversal.rb", "name": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/linksys_e1500_traversal.rb", "tags": [], "refsource": ""}, {"url": "https://www.exploit-db.com/exploits/24475", "name": "https://www.exploit-db.com/exploits/24475", "tags": [], "refsource": ""}, {"url": "https://web.archive.org/web/20150428184015/http://www.s3cur1ty.de/m1adv2013-004", "name": "https://web.archive.org/web/20150428184015/http://www.s3cur1ty.de/m1adv2013-004", "tags": [], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "A directory traversal vulnerability exists in Linksys router's web interface (tested on the E1500 model firmware versions 1.0.00, 1.0.04, and 1.0.05), specifically in the /apply.cgi endpoint. Authenticated attackers can exploit the next_page POST parameter to access arbitrary files outside the intended web root by injecting traversal sequences. This allows exposure of sensitive system files and configuration data."}]}, "problemtype": {"problemtype_data": [{"description": []}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2013-10062", "ASSIGNER": "disclosure@vulncheck.com"}}, "impact": {}, "publishedDate": "2025-08-01T21:15Z", "configurations": {"nodes": [], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-08-06T14:15Z"}