EIP-2026-101791

PRE-CVE

Hyperoptic (Tilgin) Router HG23xx - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101791. PoCs published by LiquidWorm.

AI-analyzed exploit summary The exploit demonstrates multiple XSS and CSRF vulnerabilities in Hyperoptic (Tilgin) HG23xx routers. It includes functional PoC code for XSS via unsanitized POST parameters and CSRF attacks to add users or change admin passwords.

Description

Hyperoptic (Tilgin) Router HG23xx - Multiple Vulnerabilities

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · textwebappshardware

https://www.exploit-db.com/exploits/39951

View Code ZIP pw:eip

The exploit demonstrates multiple XSS and CSRF vulnerabilities in Hyperoptic (Tilgin) HG23xx routers. It includes functional PoC code for XSS via unsanitized POST parameters and CSRF attacks to add users or change admin passwords.

Classification

Working Poc 95%

Attack Type

Xss | Csrf

Complexity

Trivial

Reliability

Reliable

Target: Hyperoptic (Tilgin) HG23xx (HG2330, HG2302, HG2301)

Auth required

Prerequisites: Victim must be authenticated · Victim must visit a malicious webpage

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026