3 matches found
CVE-2018-14711
Missing cross-site request forgery protection in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows attackers to cause state-changing actions with specially crafted URLs...
CVE-2018-14711
Missing cross-site request forgery protection in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows attackers to cause state-changing actions with specially crafted URLs...
CVE-2018-14711
CVE-2018-14711 affects ASUS RT-AC3200 firmware 3.0.0.4.382.50010, where the CSRF protection is missing in the web interface endpoint appGet.cgi. This allows an attacker to perform state-changing actions via specially crafted URLs without user interaction. The available documents identify the vuln...