3 matches found
CVE-2018-12455
CVE-2018-12455 affects Intelbras NPLUG 1.0.0.14. The NPLUG device is vulnerable to authentication bypass via a cookie named "admin:", enabling unauthenticated access to the web interface and risking exposure of credentials and configuration. Connected sources (Nuclei template, CNVD/CVE lists, and...
CVE-2018-12456
Vulnerability summary (CVE-2018-12456): Intelbras NPLUG 1.0.0.14 wireless repeater web interface lacks CSRF token protection, enabling a CSRF-based attack that can modify the SSID, reboot the device, edit the access control list, or activate remote access. The CNVD entry confirms the CSRF vulnera...
CVE-2018-17337
CVE-2018-17337 affects Intelbras NPLUG 1.0.0.14. The connected documents confirm a cross-site scripting (XSS) vulnerability that can be triggered by a specially crafted SSID received over a network broadcast. The root cause is the handling of SSID data leading to script/HTML injection. The report...