CVE-2014-9431
CVE-2014-9431 describes multiple cross-site request forgery (CSRF) vulnerabilities in Smoothwall Express 3.1 and 3.0 SP3. The flaws allow remote attackers to hijack the authentication of administrators and change either the admin or dial password by issuing requests to httpd/cgi-bin/changepw.cgi....