Conceptronic : Security Vulnerabilities, CVEs, (CSRF)
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. CSRF exists in hy-cgi/user.cgi, as demonstrated by changing an administrator password or adding a new administrator account.
Max CVSS
8.8
EPSS Score
0.07%
Published
2018-01-30
Updated
2018-02-27
Cross-site request forgery (CSRF) vulnerability in set_users.cgi in Conceptronic CIPCAMPTIWL Camera 1.0 with firmware 21.37.2.49 allows remote attackers to hijack the authentication of administrators for requests that add arbitrary users.
Max CVSS
6.8
EPSS Score
0.47%
Published
2014-01-17
Updated
2018-10-09
2 vulnerabilities found