CVE-2014-4716

Thomson TWG87OUIR - CSRF

Title source: llm

Description

Cross-site request forgery (CSRF) vulnerability in Thomson TWG87OUIR allows remote attackers to hijack the authentication of unspecified victims for requests that change passwords via the Password and PasswordReEnter parameters to goform/RgSecurity.

Exploits (1)

exploitdb WORKING POC

by nopesled · htmlwebappshardware

https://www.exploit-db.com/exploits/33866

View Code ZIP pw:eip

References (3)

[Third Party Advisory, VDB Entry] http://osvdb.org/show/osvdb/108397

[Exploit] http://packetstormsecurity.com/files/127244/Thomson-TWG87OUIR-Cross-Site-Request-Forgery.html

[Exploit] http://www.exploit-db.com/exploits/33866

Scores

EPSS 0.0019

EPSS Percentile 40.2%

Details

CWE

CWE-352

Status published

Products (1)

thomson/twg87ouir

Published Jul 03, 2014

Tracked Since Feb 18, 2026