30 matches found
CVE-2020-18331
Directory traversal vulnerability in ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01hardware platform Gpn2.4P21-CWIFI-V0.05, via the getpage parameter to /cgi-bin/webproc...
CVE-2020-18330
An issue was discovered in the default configuration of ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01hardware platform Gpn2.4P21-CWIFI-V0.05, allows attackers to gain access to the configuration interface...
Directory traversal
Directory traversal vulnerability in ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01hardware platform Gpn2.4P21-CWIFI-V0.05, via the getpage parameter to /cgi-bin/webproc...
Default configuration
An issue was discovered in the default configuration of ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01hardware platform Gpn2.4P21-CWIFI-V0.05, allows attackers to gain access to the configuration interface...
ChinaMobile GPN2.4P21-C-CN 路径遍历漏洞
China Mobile ChinaMobile GPN2.4P21-C-CN is a wireless router from China Mobile. A path traversal vulnerability exists in the ChinaMobile GPN2.4P21-C-CN. An attacker can use this vulnerability to read arbitrary files on the server running the application...
ChinaMobile GPN2.4P21-C-CN 路径遍历漏洞
China Mobile ChinaMobile GPN2.4P21-C-CN is a wireless router from China Mobile. A security vulnerability exists in the ChinaMobile GPN2.4P21-C-CN. An attacker can exploit this vulnerability to access the configuration interface...
PT-2023-11491 · China Mobile · Chinamobile Plc Wireless Router
Name of the Vulnerable Software and Affected Versions: ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN version W2000EN-01 Description: The issue is related to a directory traversal vulnerability. It can be exploited via the getpage parameter to the "/cgi-bin/webproc" API endpoint...
CVE-2020-18330
CVE-2020-18330 affects ChinaMobile PLC Wireless Router GPN2.4P21-C-CN (firmware W2000EN-01, hardware Gpn2.4P21-C_WIFI-V0.05). The default configuration allows remote attackers to gain access to the configuration interface, with CVSS v3.1 base score 9.1 (CRITICAL), no user interaction, and network...
PT-2023-11490 · China Mobile · Chinamobile Plc Wireless Router
Name of the Vulnerable Software and Affected Versions: ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN version W2000EN-01 Description: An issue was discovered in the default configuration of the ChinaMobile PLC Wireless Router, allowing attackers to gain access to the configuration interface...
CVE-2019-1010136
ChinaMobile GPN2.4P21-C-CN W2001EN-00 is affected by: Incorrect Access Control - Unauthenticated Remote Reboot. The impact is: PLC Wireless Router's are vulnerable to an unauthenticated remote reboot due. The component is: Reboot settings are available to unauthenticated users instead of only...
CVE-2019-1010136
ChinaMobile GPN2.4P21-C-CN W2001EN-00 is affected by: Incorrect Access Control - Unauthenticated Remote Reboot. The impact is: PLC Wireless Router's are vulnerable to an unauthenticated remote reboot due. The component is: Reboot settings are available to unauthenticated users instead of only...
Design/Logic Flaw
ChinaMobile GPN2.4P21-C-CN W2001EN-00 is affected by: Incorrect Access Control - Unauthenticated Remote Reboot. The impact is: PLC Wireless Router's are vulnerable to an unauthenticated remote reboot due. The component is: Reboot settings are available to unauthenticated users instead of only...
CVE-2019-1010136
ChinaMobile GPN2.4P21-C-CN W2001EN-00 is affected by: Incorrect Access Control - Unauthenticated Remote Reboot. The impact is: PLC Wireless Router's are vulnerable to an unauthenticated remote reboot due. The component is: Reboot settings are available to unauthenticated users instead of only...
CVE-2019-1010136
CVE-2019-1010136 affects ChinaMobile GPN2.4P21-C-CN W2001EN-00. The root cause is Incorrect Access Control, enabling Unauthenticated Remote Reboot. Reboot settings are accessible to unauthenticated users, enabling a Remote attack vector. No remediation details are provided in the connected docume...
Cross site request forgery (csrf)
ChinaMobile PLC Wireless Router GPN2.4P21-C-CN devices with firmware W2001EN-00 have CSRF via the cgi-bin/webproc?getpage=html/index.html subpage=wlsecurity URI, allowing an Attacker to change the Wireless Security Password...
PLC Wireless Router GPN2.4P21-C-CN Incorrect Access Control
Exploit Title: PLC Wireless Router GPN2.4P21-C-CN -Incorrect Access Control Date: 14/01/2019 Exploit Author: Kumar Saurav Reference: https://0dayfindings.home.blog/2019/01/15/plc-wireless-router-gpn2-4p21-c-cn-incorrect-access-control/ Vendor: ChinaMobile Category: Hardware Version: GPN2.4P21-C-C...
PLC Wireless Router GPN2.4P21-C-CN - Incorrect Access Control
Exploit Title: PLC Wireless Router GPN2.4P21-C-CN -Incorrect Access Control Date: 14/01/2019 Exploit Author: Kumar Saurav Reference: https://0dayfindings.home.blog/2019/01/15/plc-wireless-router-gpn2-4p21-c-cn-incorrect-access-control/ Vendor: ChinaMobile Category: Hardware Version: GPN2.4P21-C-C...
PLC Wireless Router GPN2.4P21-C-CN Cross Site Request Forgery
Exploit Title: PLC Wireless Router GPN2.4P21-C-CN -Cross-Site Request Forgery CSRF Date: 14/01/2019 Exploit Author: Kumar Saurav Reference: https://0dayfindings.home.blog/2019/01/15/plc-wireless-router-gpn2-4p21-c-cn-cross-site-request-forgery-csrf/ Vendor: ChinaMobile Category: Hardware Version:...
PLC Wireless Router GPN2.4P21-C-CN - Incorrect Access Control Exploit
Exploit for hardware platform in category web applications Exploit Title: PLC Wireless Router GPN2.4P21-C-CN -Incorrect Access Control Exploit Author: Kumar Saurav Reference: https://0dayfindings.home.blog/2019/01/15/plc-wireless-router-gpn2-4p21-c-cn-incorrect-access-control/ Vendor: ChinaMobile...
CVE-2019-6282
The CVE-2019-6282 issue affects ChinaMobile PLC Wireless Router GPN2.4P21-C-CN devices running firmware W2001EN-00. The vulnerability is CSRF through the URI cgi-bin/webproc?getpage=html/index.html subpage=wlsecurity, enabling an attacker to change the Wireless Security Password. Public exploit r...