Check CVE Id
Check CWE Id
Cross-site request forgery (CSRF) vulnerability in frontview/lib/np_handler.pl in NETGEAR ReadyNAS RAIDiator before 4.1.12 and 4.2.x before 4.2.24 allows remote attackers to hijack the authentication of users.
(Cross-Site Request Forgery (CSRF))
CVSS Base Score
NETGEAR SRX5308 4.3.5-3 devices allow SQL Injection, as exploited in the wild in September 2019 to add a new user account.
An exploitable denial-of-service vulnerability exists in the Host Access Point Daemon (hostapd) on the NETGEAR N300 (WNR2000v5 with Firmware Version V220.127.116.11) wireless router. A SOAP request sent in an invalid sequence to the <WFAWLANConfig:1#PutMes...
An exploitable denial-of-service vulnerability exists in the session handling functionality of the NETGEAR N300 (WNR2000v5 with Firmware Version V18.104.22.168) HTTP server. An HTTP request with an empty User-Agent string sent to a page requiring authenti...
NETGEAR EX7000 V22.214.171.124_1.0.94 devices allow XSS via the SSID.
An exploitable information disclosure vulnerability exists in the KCodes NetUSB.ko kernel module that enables the ReadySHARE Printer functionality of at least two NETGEAR Nighthawk Routers and potentially several other vendors/products. An unauthenti...
An exploitable arbitrary memory read vulnerability exists in the KCodes NetUSB.ko kernel module which enables the ReadySHARE Printer functionality of at least two NETGEAR Nighthawk Routers and potentially several other vendors/products. A specially c...
A vulnerability is in the 'BSW_cxttongr.htm' page of the Netgear DGN2200, version DGN2200-V126.96.36.199_7.0.50, and DGND3700, version DGND3700-V188.8.131.52_1.0.17, which can allow a remote attacker to access this page without any authentication. When proces...
There are few web pages associated with the genie app on the Netgear WNDR4500 running firmware version V184.108.40.206_1.0.6877. Genie app adds some capabilities over the Web GUI and can be accessed even when you are away from home. A remote attacker can a...
Back to Top