Описание
The web interface on the Axesstel MV 410R redirects users back to the referring page after execution of some CGI scripts, which makes it easier for remote attackers to avoid detection of cross-site request forgery (CSRF) attacks, as demonstrated by a redirect from the cgi-bin/wireless.cgi script.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:h:axesstel:mv_410r:*:*:*:*:*:*:*:*
EPSS
Процентиль: 66%
0.00507
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-352
Связанные уязвимости
github
почти 4 года назад
The web interface on the Axesstel MV 410R redirects users back to the referring page after execution of some CGI scripts, which makes it easier for remote attackers to avoid detection of cross-site request forgery (CSRF) attacks, as demonstrated by a redirect from the cgi-bin/wireless.cgi script.
EPSS
Процентиль: 66%
0.00507
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-352