CVE-2008-6974
CVE-2008-6974 affects DD-WRT 24 sp1 and earlier. The vulnerability is a CSRF in apply.cgi that allows remote attackers to hijack administrator authentication and issue privileged requests via parameters such as ping_ip (arbitrary command execution), http_username/http_passwd (credential changes),...