Missing Cross-Site Request Forgery (CSRF) Protection in ASUS RT-AC3200 Version 3.0.0.4.382.50010

Missing Cross-Site Request Forgery (CSRF) Protection in ASUS RT-AC3200 Version 3.0.0.4.382.50010

CVE-2018-14711 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Missing cross-site request forgery protection in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows attackers to cause state-changing actions with specially crafted URLs.

Learn more about our Web Application Penetration Testing UK.