3 matches found
Grundig Smart Inter@ctive 3.0 - Cross-Site Request Forgery
Grundig Smart Inter@ctive 3.0 - Cross-Site Request Forgery Exploit Title: Grundig Smart Inter@ctive 3.0 - Cross-Site Request Forgery Date: 2018-07-§3 Exploit Author: Ahmethan-Gultekin - t4rkd3vilz Vendor Homepage: https://www.grundig.com/ Software Link:...
CVE-2018-13989
Grundig Smart Inter@ctive TV 3.0 devices allow CSRF attacks via a POST request to TCP port 8085 containing a predictable ID value, as demonstrated by a /sendrcpackage?keyid=-2544&keysymbol=-4081 request to shut off the device...
CVE-2018-13989
The CVE-2018-13989 issue affects Grundig Smart Inter@ctive TV 3.0. It enables Cross-Site Request Forgery via a POST to TCP port 8085 that carries a predictable ID (example: /sendrcpackage?keyid=-2544&keysymbol=-4081), allowing an attacker to shut off the device. Multiple sources (NVD entry and CN...