7 matches found
Tenda N300 F3 12.01.01.48 Header Processing
!/usr/bin/python3 Exploit Title: Tenda N300 F3 12.01.01.48 - Malformed HTTP Request Header Processing Shodan Dork: http.favicon.hash:-2145085239 http.title:"Tenda | LOGIN" Date: 09/03/2023 Exploit Author: @h454nsec Github: https://github.com/H454NSec/CVE-2020-35391 Vendor Homepage:...
Tenda N300 F3 12.01.01.48 - Malformed HTTP Request Header Processing Exploit
!/usr/bin/python3 Exploit Title: Tenda N300 F3 12.01.01.48 - Malformed HTTP Request Header Processing Shodan Dork: http.favicon.hash:-2145085239 http.title:"Tenda | LOGIN" Exploit Author: @h454nsec Github: https://github.com/H454NSec/CVE-2020-35391 Vendor Homepage:...
Tenda N300 F3 12.01.01.48 - Malformed HTTP Request Header Processing
!/usr/bin/python3 Exploit Title: Tenda N300 F3 12.01.01.48 - Malformed HTTP Request Header Processing Shodan Dork: http.favicon.hash:-2145085239 http.title:"Tenda | LOGIN" Date: 09/03/2023 Exploit Author: @h454nsec Github: https://github.com/H454NSec/CVE-2020-35391 Vendor Homepage:...
Exploit for Forced Browsing in Tenda F3_Firmware
CVE-2020-35391 Tenda f3 Malformed HTTP Request Header Processi...
CVE-2020-35391
creationtimestamp| type| source ---|---|--- 2021-01-01 12:32:40+00:00| seen| https://t.me/cibsecurity/21508 2025-03-03 04:00:07+00:00| published-proof-of-concept| Telegram/fw-CZqwbKxB6vEWXGVz9kSt55wRoS0phrSbkRY35AmHGuSI...
CVE-2020-35391
Tenda N300 F3 12.01.01.48 devices allow remote attackers to obtain sensitive information possibly including an httppasswd line via a direct request for cgi-bin/DownloadCfg/RouterCfm.cfg, a related issue to CVE-2017-14942. NOTE: the vulnerability report may suggest that either a ? character must b...
CVE-2020-35391
CVE-2020-35391 affects Tenda N300 F3 firmware 12.01.01.48. A remote attacker can obtain sensitive information by directly requesting cgi-bin/DownloadCfg/RouterCfm.cfg, a vulnerability related to CVE-2017-14942 (authentication/config exposure via HTTP handling). Exploit code exists (Exploit-DB ent...