CVE-2018-12528

HIGH

Intex N150 Firmware - Unrestricted Upload of Dangerous File Type via Backup/Restore Function

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-12528. PoCs published by Samrat Das.

AI-analyzed exploit summary This exploit demonstrates a CSRF vulnerability in Intex Router N-150 firmware, allowing an attacker to create a new admin user via a crafted HTML form. The lack of CSRF token validation enables arbitrary execution of privileged actions.

Description

An issue was discovered on Intex N150 devices. The backup/restore option does not check the file extension uploaded for importing a configuration files backup, which can lead to corrupting the router firmware settings or even the uploading of malicious files. In order to exploit the vulnerability, an attacker can upload any malicious file and force reboot the router with it.

Exploits (1)

exploitdb WORKING POC
by Samrat Das · textwebappshardware
https://www.exploit-db.com/exploits/44933

This exploit demonstrates a CSRF vulnerability in Intex Router N-150 firmware, allowing an attacker to create a new admin user via a crafted HTML form. The lack of CSRF token validation enables arbitrary execution of privileged actions.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Intex Router N-150
Auth required
Prerequisites: Victim must be logged into the router admin panel · Attacker must host the malicious HTML page and trick the victim into visiting it
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/44933/

Scores

CVSS v3 8.1
EPSS 0.0149
EPSS Percentile 70.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Details

CWE
CWE-434
Status published
Products (1)
intex/n150_firmware
Published Jul 02, 2018
Tracked Since Feb 18, 2026