Exploits / Vulnerability Discovered : 2019-03-20 |
Type : webapps |
Platform : hardware
This exploit / vulnerability Plc wireless router gpn2.4p21ccn crosssite request forgery is for educational purposes only and if it is used you will do on your own risk!
#Description: ChinaMobile PLC Wireless Router GPN2.4P21-C-CN devices with firmware
W2001EN-00 have CSRF vulnerability via the cgi-bin/webproc?getpage=html/index.html
subpage=wlsecurity URI, allowing an Attacker to change the Wireless Security Password.
#Reproduction Steps:
Note: This enables an attacker to perform an unwanted action on a wireless router for which the user/admin is currently authenticated.
Step 1: User login to PLC wireless router
Step 2: User visits the attacker's malicious web page (PLC_CSRF.html)
Step 3: PLC_CSRF.html exploits CSRF vulnerability and changes the wireless Security (WPA/WPA2) key to "PSWDmatlo331#@!"