CyberSec.Space Logo
Back to CVE Browser

CVE-2007-4387

MEDIUM
4.3
CVSS Severity Score
EPSS Score0.0300%
EPSS Percentile29.23th
PublishedAug 17, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Cross-site request forgery (CSRF) vulnerability in /xslt in 2wire 1701HG and 2071 Gateway routers, with 3.17.5 and 5.29.51 software, allows remote attackers to perform certain configuration changes as administrators.

Affected Platforms (CPE)

πŸ”Œ
2wire

1701hg Router

= 3.17.5
πŸ”Œ
2wire

1701hg Router

= 5.29.51
πŸ”Œ
2wire

2071 Router

= 3.17.5
πŸ”Œ
2wire

2071 Router

= 5.29.51

References & Advisories

πŸ”— http://osvdb.org/37667
πŸ”— http://secunia.com/advisories/26496
πŸ”— http://securityreason.com/securityalert/3026
πŸ”— http://www.securityfocus.com/archive/1/476595/100/0/threaded
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/36044
πŸ”— http://osvdb.org/37667
πŸ”— http://secunia.com/advisories/26496
πŸ”— http://securityreason.com/securityalert/3026

Related Vulnerabilities

CVE-2007-438810.0

2wire 1701HG and 2071 Gateway routers, with 5.29.51 and possibly 3.17.5 software, have a blank password by default.

CVE-2007-43897.8

Cross-site request forgery (CSRF) vulnerability in /xslt in 2wire 1701HG, 1800HW, and 2071 Gateway routers, with 3.17.5, 3.7.1, an...

CVE-2007-350010.0

Xeweb XEForum allows remote attackers to gain privileges via a modified xeforum cookie.

CVE-2007-049610.0

PHP remote file inclusion vulnerability in lib/nl/nl.php in Neon Labs Website (nlws) 3.2 and earlier allows remote attackers to ex...