Vulnerabilities > Asus > RT G32 Firmware > 2.0.3.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-03-23 | CVE-2015-2681 | Cross-site Scripting vulnerability in Asus Rt-G32 Firmware 2.0.2.6/2.0.3.2 Multiple cross-site scripting (XSS) vulnerabilities in the ASUS RT-G32 routers with firmware 2.0.2.6 and 2.0.3.2 allow remote attackers to inject arbitrary web script or HTML via the (1) next_page, (2) group_id, (3) action_script, or (4) flag parameter to start_apply.htm. | 4.3 |
2015-03-23 | CVE-2015-2676 | Cross-Site Request Forgery (CSRF) vulnerability in Asus Rt-G32 Firmware 2.0.2.6/2.0.3.2 Cross-site request forgery (CSRF) vulnerability in the ASUS RT-G32 routers with firmware 2.0.2.6 and 2.0.3.2 allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via a request to start_apply.htm. | 6.8 |