M0n0wall Multiple Cross Site Request Forgery Vulnerabilities


m0n0wall is prone to multiple cross-site request-forgery vulnerabilities because it fails to properly validate POST requests.



Vulnerable Systems:
 * m0n0wall 1.33

Attackers can exploit these issues to perform certain administrative actions and gain unauthorized access to the affected application. Other attacks are also possible.

An attacker can exploit these issues by enticing an unsuspecting victim to follow a malicious URI.

The following exploit codes are available:

Disclosure Timeline:
Published: December 06 2012

Categories: News