ID CVE-2018-12456
Summary Intelbras NPLUG 1.0.0.14 wireless repeater devices have no CSRF token protection in the web interface, allowing attackers to perform actions such as changing the wireless SSID, rebooting the device, editing access control lists, or activating remote access.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
packetstorm via4
data source https://packetstormsecurity.com/files/download/149730/nplug-xsrfxssbypass.txt
id PACKETSTORM:149730
last seen 2018-10-11
published 2018-10-09
reporter Patrick Costa
source https://packetstormsecurity.com/files/149730/NPLUG-Wireless-Repeater-1.0.0.14-CSRF-XSS-Authentication-Bypass.html
title NPLUG Wireless Repeater 1.0.0.14 CSRF / XSS / Authentication Bypass
refmap via4
fulldisc 20181008 Multiple vulnerabilities in NPLUG wireless repeater
Last major update 10-10-2018 - 17:29
Published 10-10-2018 - 17:29
Last modified 10-10-2018 - 17:29
Back to Top