6 matches found
Wavlink WN530HG4 - Password Disclosure Vulnerability
Exploit Title: Wavlink WN530HG4 - Password Disclosure Exploit Author: Ahmed Alroky Author Company : AIactive Version: M30HG4.V5030.191116 Vendor home page : wavlink.com Authentication Required: No CVE : CVE-2022-34047 Tested on: Windows Exploit view-source:http://IPaddress/setsafety.shtml?r=52300...
Wavlink WN530HG4 - Password Disclosure
Exploit Title: Wavlink WN530HG4 - Password Disclosure Date: 2022-06-12 Exploit Author: Ahmed Alroky Author Company : AIactive Version: M30HG4.V5030.191116 Vendor home page : wavlink.com Authentication Required: No CVE : CVE-2022-34047 Tested on: Windows Exploit...
Wavlink WN530HG4 Password Disclosure
Exploit Title: Wavlink WN530HG4 - Password Disclosure Date: 2022-06-12 Exploit Author: Ahmed Alroky Author Company : AIactive Version: M30HG4.V5030.191116 Vendor home page : wavlink.com Authentication Required: No CVE : CVE-2022-34047 Tested on: Windows Exploit...
CVE-2022-34047
creationtimestamp| type| source ---|---|--- 2022-07-20 20:12:10+00:00| seen| https://t.me/cibsecurity/46687...
CVE-2022-34047
An access control issue in Wavlink WN530HG4 M30HG4.V5030.191116 allows attackers to obtain usernames and passwords via view-source:http://IPADDRESS/setsafety.shtml?r=52300 and searching for var syspasswd...
CVE-2022-34047
CVE-2022-34047 affects WAVLINK WN530HG4 (M30HG4.V5030.191116). The issue is an improper access control in the set_safety.shtml?r=52300 endpoint, where an attacker can view the page source (view-source:) and search for var syspasswd to obtain usernames and passwords. Evidence in connected docs not...