Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
p-660hw vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1257
Cross-site scripting (XSS) vulnerability in Forms/DiagGeneral_2 on the ZyXEL P-660HW series router allows remote malicious users to inject arbitrary web script or HTML via the PingIPAddr parameter.
Zyxel P-660hw T3 -
Zyxel P-660hw T1
Zyxel P-660hw D3 -
Zyxel P-660hw D1 -
Zyxel P-660hw T3 V2
Zyxel P-660hw D1 V2
NA
CVE-2013-3588
The web management interface on Zyxel P660 devices allows remote malicious users to cause a denial of service (reboot) via a flood of TCP SYN packets.
Zyxel P-660h-63 -
Zyxel P-660h-t1 -
Zyxel P-660h-d3 -
Zyxel P-660h-t1 V2
Zyxel P-660h-67 -
Zyxel P-660hw D1 V2
Zyxel P-660hw T1
Zyxel P-660h-61 -
Zyxel P-660hw T3 V2
Zyxel P-660hw T3 -
Zyxel P-660hw D3 -
Zyxel P-660h-t3 V2
Zyxel P-660h-d1 -
Zyxel P-660hw D1 -
NA
CVE-2008-1254
Multiple cross-site request forgery (CSRF) vulnerabilities on the ZyXEL P-660HW series router allow remote malicious users to (1) change DNS servers and (2) add keywords to the "bannedlist" via unspecified vectors.
Zyxel P-660hw
NA
CVE-2008-1255
The ZyXEL P-660HW series router maintains authentication state by IP address, which allows remote malicious users to bypass authentication by establishing a session from a source IP address of a previously authenticated user.
Zyxel P-660hw
NA
CVE-2008-1256
The ZyXEL P-660HW series router has "admin" as its default password, which allows remote malicious users to gain administrative access.
Zyxel P-660hw
NA
CVE-2014-4162
Multiple cross-site request forgery (CSRF) vulnerabilities in the Zyxel P-660HW-T1 (v3) wireless router allow remote malicious users to hijack the authentication of administrators for requests that change the (1) wifi password or (2) SSID via a request to Forms/WLAN_General_1.
Zyxel P-660hw T1
1 EDB exploit
6.1
CVSSv3
CVE-2015-6017
Multiple cross-site scripting (XSS) vulnerabilities in Forms/rpAuth_1 on ZyXEL P-660HW-T1 2 devices with ZyNOS firmware 3.40(AXH.0) allow remote malicious users to inject arbitrary web script or HTML via the (1) LoginPassword or (2) hiddenPassword parameter.
Zyxel P-660hw-t1 V2 Firmware 3.40\\(axh.0\\)
NA
CVE-2013-6786
Cross-site scripting (XSS) vulnerability in Allegro RomPager prior to 4.51, as used on the ZyXEL P660HW-D1, Huawei MT882, Sitecom WL-174, TP-LINK TD-8816, and D-Link DSL-2640R and DSL-2641R, when the "forbidden author header" protection mechanism is bypassed, allows rem...
Zyxel P-660hw D1 -
Sitecom Wl-174 -
Allegrosoft Rompager
Tp-link Td-8816 -
Huawei Mt882 -
Dlink Dsl-2640r -
Dlink Dsl-2641r -
2 Nmap scripts
7.5
CVSSv3
CVE-2018-5330
ZyXEL P-660HW v3 devices allow remote malicious users to cause a denial of service (router unreachable/unresponsive) via a flood of fragmented UDP packets.
Zyxel P-660hw V3 Firmware -
7.5
CVSSv3
CVE-2017-17901
ZyXEL P-660HW v3 devices allow remote malicious users to cause a denial of service (CPU consumption) via a flood of IP packets with a TTL of 1.
Zyxel P-660hw Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »