CVE-2022-42467

When running in prototype mode, the h2 webconsole module accessible from the Prototype menu is automatically made available with the ability to directly query the database. It was felt that it is safer to require the developer to explicitly enable this capability. As of 2.0.0-M8, this can now be...

Ubee EVW327 Cross Site Request Forgery

Exploit Title: Ubee EVW327 - 'Enable Remote Access' Cross-Site Request Forgery CSRF Date: 2021-05-30 Exploit Author: lated Vendor Homepage: https://www.ubeeinteractive.com Version: EVW327 document.forms0.submit;...

Ubee EVW327 - 'Enable Remote Access' Cross-Site Request Forgery (CSRF)

Exploit Title: Ubee EVW327 - 'Enable Remote Access' Cross-Site Request Forgery CSRF Date: 2021-05-30 Exploit Author: lated Vendor Homepage: https://www.ubeeinteractive.com Version: EVW327 document.forms0.submit;...

Multilaser Router RE018 AC1200 - Cross-Site Request Forgery (Enable Remote Access) Vulnerability

Exploit Title: Multilaser Router RE018 AC1200 - Cross-Site Request Forgery Enable Remote Access Exploit Author: Rodolfo Mariano Version: Firmware V02.03.01.45pt CVE: CVE-2021-31152 Exploit code: document.forms0.submit; 0day.today 2021-10-25...

Multilaser Router RE018 AC1200 - Cross-Site Request Forgery (Enable Remote Access)

Exploit Title: Multilaser Router RE018 AC1200 - Cross-Site Request Forgery Enable Remote Access Date: 14/04/2021 Exploit Author: Rodolfo Mariano Version: Firmware V02.03.01.45pt CVE: 2021-31152 Exploit Code: document.forms0.submit;...