Tag

Cookie-Injection

1 brief RSS

Tenda W308R DNS Hijacking Vulnerability (CVE-2018-25316)

Tenda W308R v2 V5.07.48 is vulnerable to cookie session weakness, allowing unauthenticated attackers to modify DNS settings via crafted GET requests to redirect user traffic to malicious sites.

W308R v2 cve-2018-25316 dns-hijacking tenda cookie-injection

2r 1t 1c 5d ago