9 matches found
CVE-2022-47697
COMFAST Shenzhen Sihai Zhonglian Network Technology Co., Ltd CF-WR623N Router firmware V2.3.0.1 and before is vulnerable to Account takeover. Anyone can reset the password of the admin accounts...
CVE-2022-47701
COMFAST Shenzhen Sihai Zhonglian Network Technology Co., Ltd CF-WR623N Router firmware V2.3.0.1 is vulnerable to Cross Site Scripting XSS...
Cross site scripting
COMFAST Shenzhen Sihai Zhonglian Network Technology Co., Ltd CF-WR623N Router firmware V2.3.0.1 is vulnerable to Cross Site Scripting XSS...
Design/Logic Flaw
COMFAST Shenzhen Sihai Zhonglian Network Technology Co., Ltd CF-WR623N Router firmware V2.3.0.1 and before is vulnerable to Account takeover. Anyone can reset the password of the admin accounts...
Authentication flaw
COMFAST Shenzhen Sihai Zhonglian Network Technology Co., Ltd CF-WR623N Router firmware V2.3.0.1 and before is vulnerable to Incorrect Access Control. Improper authentication allows requests to be made to back-end scripts without a valid session or authentication...
Cross site scripting
COMFAST Shenzhen Sihai Zhonglian Network Technology Co., Ltd CF-WR623N Router firmware V2.3.0.1 is vulnerable to Cross Site Scripting XSS via the URL filtering feature in the router...
CVE-2022-47699
COMFAST Shenzhen Sihai Zhonglian Network Technology Co., Ltd CF-WR623N Router firmware V2.3.0.1 is vulnerable to Incorrect Access Control...
PT-2023-15461 · Comfast · Comfast Cf-Wr623N
Name of the Vulnerable Software and Affected Versions: COMFAST CF-WR623N Router firmware version V2.3.0.1 Description: The issue is related to Cross Site Scripting XSS via the URL filtering feature in the router. This means an attacker could potentially inject malicious scripts into the website,...
PT-2023-15462 · Comfast · Comfast Cf-Wr623N
Name of the Vulnerable Software and Affected Versions: COMFAST CF-WR623N Router firmware version V2.3.0.1 Description: The issue is related to Incorrect Access Control. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents...