| Titolo | Multilaser Sirius RE016 MLT1.0 Information Disclosure |
|---|
| Descrizione | This vulnerability allows unauthorized disclosure of administrative credentials from the Multilaser Sirius RE016 router via the /cgi-bin/cstecgi.cgi endpoint. A remote attacker can obtain the administrator’s username and password without authentication, exposing the device to severe security risks such as full router takeover, traffic interception, and internal network attacks. |
|---|
| Fonte | ⚠️ https://github.com/DefaultCh40s/RE016/blob/main/re016.py |
|---|
| Utente | DefaultCh40s (UID 85145) |
|---|
| Sottomissione | 24/05/2025 22:22 (1 Anno fa) |
|---|
| Moderazione | 01/06/2025 13:11 (8 days later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 310769 [Multilaser Sirius RE016 MLT1.0 /cgi-bin/cstecgi.cgi rivelazione di informazioni] |
|---|
| Punti | 19 |
|---|