Buffalotech » Airstation Whr-g54s : Security Vulnerabilities, CVEs, CVSS score >= 4
Cross-site request forgery (CSRF) vulnerability in the device management interface in Buffalo AirStation WHR-G54S 1.20 allows remote attackers to make configuration changes as an administrator via HTTP requests to certain HTML pages in the res parameter with an inp req parameter to cgi-bin/cgi, as demonstrated by accessing (1) ap.html and (2) filter_ip.html.
Max CVSS
4.3
EPSS Score
0.40%
Published
2007-09-11
Updated
2018-10-15
1 vulnerabilities found