CVE-2009-2323

Axesstel MV 410R - Cross-Site Request Forgery via Wireless CGI Script

Title source: llm
STIX 2.1

Description

The web interface on the Axesstel MV 410R redirects users back to the referring page after execution of some CGI scripts, which makes it easier for remote attackers to avoid detection of cross-site request forgery (CSRF) attacks, as demonstrated by a redirect from the cgi-bin/wireless.cgi script.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/35563
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/504716/100/0/threaded

Scores

EPSS 0.0085
EPSS Percentile 53.7%

Details

CWE
CWE-352
Status published
Products (1)
axesstel/mv_410r
Published Jul 05, 2009
Tracked Since Feb 18, 2026