Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
Unibox SMB 2.4 and UniBox Enterprise Series 2.4 and UniBox Campus Series 2.4 contain a cross-site request forgery (CSRF) vulnerability in /tools/network-trace, /list_users, /list_byod?usertype=raduser, /dhcp_leases, /go?rid=202 in which a specially crafted HTTP request may reconfigure the device.
- https://s3curityb3ast.github.io/KSA-Dev-008.txt
- https://www.mail-archive.com/fulldisclosure%40seclists.org/msg07139.html
- https://www.mail-archive.com/fulldisclosure@seclists.org/msg07139.html
- https://github.com/s3curityb3ast/s3curityb3ast.github.io