CVE-2009-2323
Axesstel MV 410R - Cross-Site Request Forgery via Wireless CGI Script
Title source: llmDescription
The web interface on the Axesstel MV 410R redirects users back to the referring page after execution of some CGI scripts, which makes it easier for remote attackers to avoid detection of cross-site request forgery (CSRF) attacks, as demonstrated by a redirect from the cgi-bin/wireless.cgi script.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/35563
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/504716/100/0/threaded
Scores
EPSS
0.0085
EPSS Percentile
53.7%
Details
CWE
CWE-352
Status
published
Products (1)
axesstel/mv_410r
Published
Jul 05, 2009
Tracked Since
Feb 18, 2026