Alice Gate2 Plus Wi-Fi Router - Cross-Site Request Forgery

EDB-ID:

31043


Author:

WarGame

Type:

webapps


Platform:

CGI

Date:

2008-01-21


source: https://www.securityfocus.com/bid/27374/info

Alice Gate2 Plus Wi-Fi routers are prone to a cross-site request-forgery vulnerability.

An attacker can exploit this issue to alter administrative configuration on affected devices. Specifically, altering the wireless encryption settings on devices has been demonstrated. Other attacks may also be possible. 

http://www.example.com/cp06_wifi_m_nocifr.cgi?wlChannel=Auto&wlRadioEnable=on