2 matches found
CVE-2022-34767
Web page which "wizardpwd.asp" ALLNET Router model WR0500AC is prone to Authorization bypass vulnerability – the password, located at "admin" allows changing the https://wizardpwd.asp/cgi-bin. Does not validate the user's identity and can be accessed publicly...
CVE-2022-34767
The CVE-2022-34767 vulnerability affects ALLNET WR0500AC router devices. The issue resides in the wizardpwd.asp page, where the admin password can be accessed and changed without validating the user’s identity, enabling an authorization bypass that can be exploited publicly. Several sources descr...