CVE-2012-4746

ZTE ZXDSL 831IIV7.5.0a_Z29_OV - CSRF

Title source: llm

Description

Cross-site request forgery (CSRF) vulnerability in accessaccount.cgi in ZTE ZXDSL 831IIV7.5.0a_Z29_OV allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via the sysPassword parameter.

Exploits (2)

exploitdb WORKING POC

by Nuevo Asesino · textwebappscgi

https://www.exploit-db.com/exploits/18722

View Code ZIP pw:eip

exploitdb WORKING POC

by mehdi boukazoula · textwebappshardware

https://www.exploit-db.com/exploits/18061

View Code ZIP pw:eip

References (1)

Core 1

Core References

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/18722

Scores

EPSS 0.0074

EPSS Percentile 73.2%

Details

CWE

CWE-352

Status published

Products (1)

zte/zxdsl 831iiv7.5.0a_z29_ov

Published Aug 31, 2012

Tracked Since Feb 18, 2026