CSRF in TP-LINKThere’s a great analysis of a newly discovered CSRF vulnerability in certain models of TP-LINK routers. This analysis explains what the vulnerability is, what it could affect, how to detect it, and how it could be exploited.

A CSRF attack is often used by hackers to attack routers passively without having to directly touch them. A good example is given here for how an attacker could use such an attack to try to change a router’s DNS settings.