| Titel | Multilaser Sirius RE016 MLT1.0 Information Disclosure |
|---|
| Beschreibung | This vulnerability allows unauthorized disclosure of administrative credentials from the Multilaser Sirius RE016 router via the /cgi-bin/cstecgi.cgi endpoint. A remote attacker can obtain the administrator’s username and password without authentication, exposing the device to severe security risks such as full router takeover, traffic interception, and internal network attacks. |
|---|
| Quelle | ⚠️ https://github.com/DefaultCh40s/RE016/blob/main/re016.py |
|---|
| Benutzer | DefaultCh40s (UID 85145) |
|---|
| Einreichung | 24.05.2025 22:22 (vor 1 Jahr) |
|---|
| Moderieren | 01.06.2025 13:11 (8 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 310769 [Multilaser Sirius RE016 MLT1.0 /cgi-bin/cstecgi.cgi Information Disclosure] |
|---|
| Punkte | 19 |
|---|