Vulnerabilities > Teracom > T2 B Gawv1 4U10Y BI
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-01-13 | CVE-2014-10019 | Cross-Site Request Forgery (CSRF) vulnerability in Teracom T2-B-Gawv1.4U10Y-Bi Multiple cross-site request forgery (CSRF) vulnerabilities in webconfig/wlan/country.html/country in the Teracom T2-B-Gawv1.4U10Y-BI modem allow remote attackers to hijack the authentication of administrators for requests that (1) change the SSID or (2) change the password via a crafted request. | 6.8 |
2015-01-13 | CVE-2014-10018 | Cross-site Scripting vulnerability in Teracom T2-B-Gawv1.4U10Y-Bi Cross-site scripting (XSS) vulnerability in webconfig/wlan/country.html/country in the Teracom T2-B-Gawv1.4U10Y-BI modem allows remote attackers to inject arbitrary web script or HTML via the essid parameter. | 4.3 |