2633 matches found
CVE-2016-10316
Jensen of Scandinavia AS Air:Link 3G AL3G version 2.23m Rev. 3, Air:Link 5000AC AL5000AC version 1.13, and Air:Link 59300 AL59300 version 1.04 Rev. 4 devices allow remote attackers to conduct Open Redirect attacks via the return-url parameter to /goform/formLogout...
Cross site request forgery (csrf)
Keekoon KK002 devices 1.8.12 HD have a Cross Site Request Forgery Vulnerability affecting goform/formChnUserPwd and goform/formUserMng and the entire set of other pages...
CVE-2017-6180
Keekoon KK002 devices 1.8.12 HD have a Cross Site Request Forgery Vulnerability affecting goform/formChnUserPwd and goform/formUserMng and the entire set of other pages...
CVE-2017-6180
Keekoon KK002 devices 1.8.12 HD have a Cross Site Request Forgery Vulnerability affecting goform/formChnUserPwd and goform/formUserMng and the entire set of other pages...
Cisco EPC3928 Denial of Service Vulnerability
Cisco EPC3928 is a wireless router product from Cisco USA. A security vulnerability exists in goform/Docsissystem on the Cisco EPC3928. A remote attacker can exploit this vulnerability to cause a denial of service device crash with the help of a long 'LanguageSelect' parameter...
CVE-2016-1336
goform/Docsissystem on Cisco EPC3928 devices allows remote attackers to cause a denial of service device crash via a long LanguageSelect parameter, related to a "Gateway HTTP Corruption Denial of Service" issue, aka Bug ID CSCuy28100...
Design/Logic Flaw
goform/WClientMACList on Cisco EPC3928 devices allows remote attackers to cause a denial of service device crash via a long hsortWireless parameter, related to a "Gateway Client List Denial of Service" issue, aka Bug ID CSCux24948...
PT-2016-4715 · Cisco · Cisco Epc3928
Name of the Vulnerable Software and Affected Versions: Cisco EPC3928 devices affected versions not specified Description: The issue allows remote attackers to cause a denial of service, resulting in a device crash, by exploiting the goform/WClientMACList endpoint with a long h sortWireless...
CVE-2013-5039
The CVE-2013-5039 entry concerns the HOTBOX router (SAGEMCOM HOTBOX F@st 3184) with firmware 2.1.11. It describes a CSRF flaw in goform/wlanBasicSecurity that lets an attacker hijack administrator authentication to set WifiSecurity to Deactivated. Public material (e.g., exploit-db, packetstorm, 0...
CVE-2013-6976
CVE-2013-6976 involves a CSRF flaw in Cisco EPC3925 devices’ goform/Quick_setup that lets an attacker hijack administrator sessions and change the password via Password and PasswordReEnter. Affected product: Cisco EPC3925 (router). Root cause: cross-site request forgery enabling unauthorized pass...
CVE-2013-3963
CVE-2013-3963 describes a CSRF vulnerability in Grandstream goform/usermanage affecting GXV3501/3504/3601/3601HD/LL/3611HD/LL/3615W/P/3651FHD/3662HD/3615WP_HD/3500 (and potentially other camera models) that lets remote attackers hijack a victim’s session to add users. Root cause is CSRF in the us...
CVE-2010-2025
Multiple cross-site request forgery CSRF vulnerabilities in the web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r1256-060303 allow remote attackers to hijack the authentication of administrators for requests that 1 reset the modem, 2 erase the...
CVE-2024-35340
Tenda FH1206 V1.2.0.88155 was discovered to contain a command injection vulnerability via the cmdinput parameter at ip/goform/formexeCommand...