CVE-2016-11055

CVE-2016-11055 is a CSRF vulnerability in multiple NETGEAR devices (e.g., CM400/CM600/D1500/D500/DST6501/JNR1010v1/JWNR2000Tv3/JWNR2010v3/PLW1000/PLW1010/WNR500/WNR612v3/N450/CG3000Dv2). Root cause: cross-site request forgery that enables an attacker with a crafted script to log in to the victim’...

CVE-2016-11055

Certain NETGEAR devices are affected by CSRF. This affects CM400 before 2017-01-11, CM600 before 2017-01-11, D1500 before 2017-01-11, D500 before 2017-01-11, DST6501 before 2017-01-11, JNR1010v1 before 2017-01-11, JWNR2000Tv3 before 2017-01-11, JWNR2010v3 before 2017-01-11, PLW1000 before...

NETGEAR ADSL Router WNR500 1.0.7.2 Authenticated Remote File Disclosure

!/bin/sh NETGEAR ADSL ROUTER WNR500 1.0.7.2 Authenticated Remote File Disclosure Hardware Version: WNR500 Firmware Version: 1.0.7.2 Copyright 2016 c Todor Donev https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Disclaimer: This or previous programs is for Educational purpo...

Netgear WNR500/WNR612v3/JNR1010/JNR2010 ADSL Router - (Authenticated) Remote File Disclosure

!/bin/sh NETGEAR ADSL ROUTER Authenticated Remote File Disclosure Hardware Version: WNR500 / WNR612v3 / JNR1010 / JNR2010 Firmware Version: 1.0.7.2 / 1.0.0.9 / 1.0.0.32 / 1.0.0.20 Copyright 2016 c Todor Donev https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Disclaimer: Th...

Beacon（Fiberhome）HG-1 1 0 device directory traversal vulnerability study-vulnerability warning-the black bar safety net

Know Chong Yu security research group 2 0 1 5 . 0 3 . 3 1 This article PDF Download: fiberhome HG-1 1 0 device recorded traversal vulnerability study 1. Updates Edition: first edition Time: 2015 / 3 / 31 Description: The first edition of the complete 2. Vulnerability summary Recently, foreign...

NETGEAR WNR500 Wireless Router - webproc?getpage Traversal Arbitrary File Access

NETGEAR WNR500 Wireless Router - webproc?getpage Traversal Arbitrary File Access Netgear Wireless Router WNR500 Parameter Traversal Arbitrary File Access Exploit Vendor: NETGEAR Product web page: http://www.netgear.com Affected version: WNR500 firmware: 1.0.7.2 Summary: The NETGEAR compact N150...

Netgear WNR500 Wireless Router - 'webproc?getpage' Traversal Arbitrary File Access

Netgear Wireless Router WNR500 Parameter Traversal Arbitrary File Access Exploit Vendor: NETGEAR Product web page: http://www.netgear.com Affected version: WNR500 firmware: 1.0.7.2 Summary: The NETGEAR compact N150 classic wireless router WNR500 improves your legacy Wireless-G network. It is a...

Netgear Wireless Router WNR500 Parameter Traversal Arbitrary File Access Exploit

Summary The NETGEAR compact N150 classic wireless router WNR500 improves your legacy Wireless-G network. It is a simple, secure way to share your Internet connection and allows you to easily surf the Internet, use email, and have online chats. The quick, CD-less setup can be done through a web...

Netgear Wireless Router WNR500 Local File Inclusion Vulnerability

The Netgear Wireless Router WNR500 suffers from an authenticated file inclusion vulnerability LFI when input passed thru the 'getpage' parameter to 'webproc' script is not properly verified before being used to include files. This can be exploited to include files from local resources with...