Yesterday I’ve discovered new CSRF vulnerabilities in Sitecom WLM-2501 300N wireless modem/router which allow an attacker to change a lot of device parameter and, most of all, to change wireless passphrase.
To know more about these vulnerabilities please read my Original Advisory.
MITRE CVE Numbering Authority assigned me CVE-2012-1921 and CVE-2012-1922 for these vulnerabilities.
Other sources have published my Advisory:
Secunia Security Advisory 48840
Offensive Security Exploit-DB