4 matches found
D-Link DIR-816L (Wireless Router) - Cross-Site Request Forgery (CVE-2015-5999)
1 User login to DIR-816L wireless router 2 User visits the attacker's malicious web page attacker.html 3 attacker.html exploits CSRF vulnerability and changes the admin account password PoC video link: http://youtu.be/UBdR2sUc8Wg Exploit code attacker.html:...
CVE-2015-5999
Multiple cross-site request forgery CSRF vulnerabilities in the D-Link DIR-816L Wireless Router with firmware before 2.06.B09BETA allow remote attackers to hijack the authentication of administrators for requests that 1 change the admin password, 2 change the network policy, or 3 possibly have...
CVE-2015-5999
CVE-2015-5999 affects D-Link DIR-816L wireless routers running firmware before 2.06.B09_BETA. The vulnerability is a CSRF flaw that can hijack administrator authentication to perform actions such as changing the admin password and network policy via crafted requests to hedwig.cgi and pigwidgeon.c...
D-Link DIR-816L Wireless Router - Cross-Site Request Forgery
---------------------------------------------------------------------------------------------- Title: ==== D-link wireless router DIR-816L – Cross-Site Request Forgery CSRF vulnerability Credit: ====== Name: Bhadresh Patel Company/affiliation: HelpAG Website: www.helpag.com CVE: ===== CVE-2015-59...