Exploitation Summary
EIP tracks 1 public exploit for EIP-2026-102127. PoCs published by Pabstersac.
AI-analyzed exploit summary This exploit demonstrates CSRF vulnerabilities in the Comcast Xfinity Web Gateway, allowing remote attackers to perform actions such as adding blocked sites, managing devices, and changing firewall settings. It also includes stored XSS and a method to steal admin credentials via CSRF.
Description
Xfinity Gateway - Cross-Site Request Forgery
Exploits (1)
This exploit demonstrates CSRF vulnerabilities in the Comcast Xfinity Web Gateway, allowing remote attackers to perform actions such as adding blocked sites, managing devices, and changing firewall settings. It also includes stored XSS and a method to steal admin credentials via CSRF.