CVE-2013-3568

HIGH EXPLOITED

Cisco Linksys Wrt110 Firmware - CSRF

Title source: rule

Description

Cross-site request forgery (CSRF) vulnerability in Cisco Linksys WRT110 allows remote attackers to hijack the authentication of users for requests that have unspecified impact via unknown vectors.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotehardware

https://www.exploit-db.com/exploits/28484

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by Craig Young, joev, juan vazquez · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/linksys_wrt110_cmd_exec.rb

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory, VDB Entry] http://www.exploit-db.com/exploits/28484

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/61151

[VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/85642

Scores

CVSS v3 8.8

EPSS 0.4106

EPSS Percentile 97.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2020-01-08

CWE

CWE-352

Status published

Products (1)

cisco/linksys_wrt110_firmware

Published Feb 06, 2020

Tracked Since Feb 18, 2026