CVE-2018-5767

An issue was discovered on Tenda AC15 V15.03.1.16_multi devices. A remote, unauthenticated attacker can gain remote code execution on the device with a crafted password parameter for the COOKIE header.

Date published : 2018-02-15

https://www.exploit-db.com/exploits/44253/

https://www.fidusinfosec.com/remote-code-execution-cve-2018-5767/