exploit-db-mirror/exploits/hardware/remote/33648.txt

source: https://www.securityfocus.com/bid/38261/info

Huawei HG510 is prone to multiple cross-site request-forgery vulnerabilities.

Successful exploits may allow attackers to run privileged commands on the affected device, change configuration, cause denial-of-service conditions, or inject arbitrary script code. Other attacks are also possible.

The following example URI is available:

http://www.example.com/password.cgi?sysPassword=BASE64_NEW_PASSWORD