cve/2013/CVE-2013-10062.md

### [CVE-2013-10062](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-10062)
![](https://img.shields.io/static/v1?label=Product&message=E1500&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=1.0.00%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=1.0.04%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=1.0.05%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-22%20Improper%20Limitation%20of%20a%20Pathname%20to%20a%20Restricted%20Directory%20('Path%20Traversal')&color=brightgreen)

### Description

A directory traversal vulnerability exists in Linksys router's web interface (tested on the E1500 model firmware versions 1.0.00, 1.0.04, and 1.0.05), specifically in the /apply.cgi endpoint. Authenticated attackers can exploit the next_page POST parameter to access arbitrary files outside the intended web root by injecting traversal sequences. This allows exposure of sensitive system files and configuration data.

### POC

#### Reference
- https://www.exploit-db.com/exploits/24475
- https://www.vulncheck.com/advisories/linksys-legacy-routers-path-traversal

#### Github
- https://github.com/ARPSyndicate/cve-scores
Update CVE list 2025-09-29 21:09 2025-09-29 21:09:30 +02:00			`### [CVE-2013-10062](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-10062)`
			`![](https://img.shields.io/static/v1?label=Product&message=E1500&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=1.0.00%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=1.0.04%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=1.0.05%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-22%20Improper%20Limitation%20of%20a%20Pathname%20to%20a%20Restricted%20Directory%20('Path%20Traversal')&color=brightgreen)`

			`### Description`

			`A directory traversal vulnerability exists in Linksys router's web interface (tested on the E1500 model firmware versions 1.0.00, 1.0.04, and 1.0.05), specifically in the /apply.cgi endpoint. Authenticated attackers can exploit the next_page POST parameter to access arbitrary files outside the intended web root by injecting traversal sequences. This allows exposure of sensitive system files and configuration data.`

			`### POC`

			`#### Reference`
			`- https://www.exploit-db.com/exploits/24475`
			`- https://www.vulncheck.com/advisories/linksys-legacy-routers-path-traversal`

			`#### Github`
			`- https://github.com/ARPSyndicate/cve-scores`