3 matches found
CVE-2017-11649
Cross-site request forgery CSRF vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0RC3 build r6594 allows remote attackers to hijack the authentication of unspecified users for requests that enable SNMP on the remote device via vectors involving goform/setSnmp...
Cross site scripting
Cross-site scripting XSS vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0RC3 build r6594 allows remote attackers to inject arbitrary web script or HTML via vectors involving home.asp...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0RC3 build r6594 allows remote attackers to hijack the authentication of unspecified users for requests that enable SNMP on the remote device via vectors involving goform/setSnmp...