From CSRF to Unauthorized Remote Admin Access

1. Introduction The intention of this article is to show how dangerous a cross-site request forgery (CSRF) vulnerability can be. It will be presented for D-Link DIR-600 router (Hardware Version: Bx; Firmware Version: 2.16). You will see how a CSRF vulnerability in three places of admin panel can be used...