2 matches found
CVE-2013-2751
The CVE-2013-2751 entry concerns NETGEAR ReadyNAS RAIDiator (FrontView) via np_handler.pl. A Perl eval() usage flaw in frontview/lib/np_handler.pl allows remote code execution through crafted requests (notably related to the forgot password workflow), enabling unauthenticated RC across affected v...
CVE-2013-2752
The CVE-2013-2752 issue affects NETGEAR ReadyNAS RAIDiator (frontview/lib/np_handler.pl) prior to 4.1.12 and 4.2.x prior to 4.2.24, where CSRF could allow remote attackers to hijack user authentication. Multiple sources corroborate a CSRF vulnerability, with OpenVAS noting CSRF and command inject...