CSRF Vulnerability in Conceptronic CIPCAMPTIWL V3 0.61.30.21 Devices

CSRF Vulnerability in Conceptronic CIPCAMPTIWL V3 0.61.30.21 Devices

CVE-2018-6408 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. CSRF exists in hy-cgi/user.cgi, as demonstrated by changing an administrator password or adding a new administrator account.

Learn more about our User Device Pen Test.