| عنوان | Tenda FH1202 V1.2.0.14(408) Improper Access Controls |
|---|
| الوصف | An improper access control vulnerability exists in the web management interface of In FH1202 V1.2.0.14(408). By sending a specially crafted unauthenticated HTTP POST request to the goform endpoint with SysToolDDNS, an attacker can set the DDNS settings of the device. |
|---|
| المصدر | ⚠️ https://lavender-bicycle-a5a.notion.site/Tenda-FH1202-SysToolDDNS-1bc53a41781f8012a03be8bebed1125b?pvs=4 |
|---|
| المستخدم | yhryhryhr (UID 65048) |
|---|
| ارسال | 20/03/2025 10:12 AM (1 سنة منذ) |
|---|
| الاعتدال | 30/03/2025 07:16 PM (10 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 302045 [Tenda FH1202 1.2.0.14(408) Web Management Interface /goform/SysToolDDNS تجاوز الصلاحيات] |
|---|
| النقاط | 14 |
|---|