cpe:/h:zyxel:p-330w_router CVE-2007-6730 2009-09-10T06:30:00.280-04:00 2009-09-15T01:10:20.093-04:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-09-10T08:53:00.000-04:00 ALLOWS_ADMIN_ACCESS FULLDISC 20071225 Ho Ho H0-Day - ZyXEL P-330W multiple XSS and XSRF vulnerabilities BID 27024 SECUNIA 28172 Multiple cross-site request forgery (CSRF) vulnerabilities in the web management interface in the ZyXEL P-330W router allow remote attackers to hijack the authentication of administrators for requests that (1) enable remote router management via goform/formRmtMgt or (2) modify the administrator password via goform/formPasswordSetup.