3 matches found
CVE-2015-5991
Cross-site request forgery CSRF vulnerability in form2WlanSetup.cgi on Philippine Long Distance Telephone PLDT SpeedSurf 504AN devices with firmware GAN9.8U26-4-TX-R6B018-PH.EN and Kasda KW58293 devices allows remote attackers to hijack the authentication of administrators for requests that perfo...
CVE-2015-5991
Cross-site request forgery CSRF vulnerability in form2WlanSetup.cgi on Philippine Long Distance Telephone PLDT SpeedSurf 504AN devices with firmware GAN9.8U26-4-TX-R6B018-PH.EN and Kasda KW58293 devices allows remote attackers to hijack the authentication of administrators for requests that perfo...
CVE-2015-5991
The CVE-2015-5991 CSRF vulnerability affects PLDT SpeedSurf 504AN (firmware GAN9.8U26-4-TX-R6B018-PH.EN) and Kasda KW58293 devices, via the form2WlanSetup.cgi page. The underlying issue is improper/authentication bypass for administrative actions, enabling a remote attacker to hijack an administr...