3 matches found
CVE-2019-16326
D-Link DIR-601 B1 2.00NA devices have CSRF because no anti-CSRF token is implemented. A remote attacker could exploit this in conjunction with CVE-2019-16327 to enable remote router management and device compromise. NOTE: this is an end-of-life product...
CVE-2019-16326
CVE-2019-16326 affects the D-Link DIR-601 B1 (firmware 2.00NA). It describes a CSRF vulnerability due to absence of an anti‑CSRF token, enabling potential remote router management when combined with CVE-2019-16327. The end‑of‑life DIR‑601 B1 is noted in the entry. The connected documents also ref...
CVE-2007-6730
Multiple cross-site request forgery CSRF vulnerabilities in the web management interface in the ZyXEL P-330W router allow remote attackers to hijack the authentication of administrators for requests that 1 enable remote router management via goform/formRmtMgt or 2 modify the administrator passwor...