CVE-2008-0228

Linksys Wrt54gl - CSRF

Title source: rule

Description

Cross-site request forgery (CSRF) vulnerability in apply.cgi in the Linksys WRT54GL Wireless-G Broadband Router with firmware 4.30.9 allows remote attackers to perform actions as administrators.

Exploits (1)

nomisec WRITEUP 7 stars

by SpiderLabs · poc

https://github.com/SpiderLabs/TWSL2011-007_iOS_code_workaround

View Code ZIP pw:eip

References (5)

[Vendor Advisory] http://secunia.com/advisories/28364

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/39502

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/485853/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/486362/100/0/threaded

[Third Party Advisory] http://securityreason.com/securityalert/3534

Scores

EPSS 0.0115

EPSS Percentile 78.2%

Classification

CWE

CWE-352

Status draft

Affected Products (1)

linksys/wrt54gl

Timeline

Published Jan 10, 2008

Tracked Since Feb 18, 2026