9 matches found
EUVD-2016-8659
Malware in sbrugna...
Cross site scripting
Cross-site scripting vulnerability in Corega CG-WLR300NX firmware Ver. 1.20 and earlier allows attacker with administrator rights to inject arbitrary web script or HTML via unspecified vectors...
CVE-2016-7811
Corega CG-WLR300NX firmware Ver. 1.20 and earlier allows an attacker on the same network segment to bypass access restriction to perform arbitrary operations via unspecified vectors...
CVE-2016-7810
Cross-site scripting vulnerability in Corega CG-WLR300NX firmware Ver. 1.20 and earlier allows attacker with administrator rights to inject arbitrary web script or HTML via unspecified vectors...
Design/Logic Flaw
Corega CG-WLR300NX firmware Ver. 1.20 and earlier allows an attacker on the same network segment to bypass access restriction to perform arbitrary operations via unspecified vectors...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in Corega CG-WLR300NX firmware Ver. 1.20 and earlier allows remote attackers to hijack the authentication of logged in user to conduct unintended operations via unspecified vectors...
CVE-2016-7811
Corega CG-WLR300NX firmware Ver. 1.20 and earlier allows an attacker on the same network segment to bypass access restriction to perform arbitrary operations via unspecified vectors...
CVE-2016-7810
Cross-site scripting vulnerability in Corega CG-WLR300NX firmware Ver. 1.20 and earlier allows attacker with administrator rights to inject arbitrary web script or HTML via unspecified vectors...
CVE-2016-7809
The CVE-2016-7809 entry concerns a CSRF vulnerability in Corega CG-WLR300NX firmware versions 1.20 and earlier. Affected product: CG-WLR300NX (wireless router). Vulnerable component: the firmware’s authentication handling allows an attacker to hijack a logged-in user’s session to perform unintend...