2 matches found
CVE-2018-6408
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. CSRF exists in hy-cgi/user.cgi, as demonstrated by changing an administrator password or adding a new administrator account...
CVE-2018-6408
The CVE-2018-6408 entry concerns Conceptronic CIPCAMPTIWL V3 devices (firmware 0.61.30.21) with a Cross-Site Request Forgery flaw in the hy-cgi/user.cgi endpoint. The root cause is CSRF on the admin management page, enabling an attacker to change an administrator password or add a new administrat...