Vulnerabilities > A Link
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-06-04 | CVE-2008-6824 | Cryptographic Issues vulnerability in A-Link Wl54Ap2 and Wl54Ap3 The management interface on the A-LINK WL54AP3 and WL54AP2 access points has a blank default password for the admin account, which makes it easier for remote attackers to obtain access. | 10.0 |
2009-06-04 | CVE-2008-6823 | Cross-Site Request Forgery (CSRF) vulnerability in A-Link Wl54Ap2 and Wl54Ap3 Multiple cross-site request forgery (CSRF) vulnerabilities in the management interface on the A-LINK WL54AP3 and WL54AP2 access points before firmware 1.4.2-eng1 allow remote attackers to hijack the authentication of administrators for requests that (1) modify the network configuration via certain parameters to goform/formWanTcpipSetup or (2) modify credentials via certain parameters to goform/formPasswordSetup. | 6.8 |