CSRF Vulnerability in Green Packet DX-350 Firmware v2.8.9.5-g1.4.8-atheeb

CSRF Vulnerability in Green Packet DX-350 Firmware v2.8.9.5-g1.4.8-atheeb

CVE-2017-9930 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Cross-Site Request Forgery (CSRF) exists in Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8-atheeb, as demonstrated by a request to ajax.cgi that enables UPnP.

Learn more about our Web Application Penetration Testing UK.