CVE-2021-37366

AI Predicted 6.5 Difficulty: Easy EPSS 0.51% · P39 Updated Feb 25, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-37366

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

CTparental before 4.45.03 is vulnerable to cross-site request forgery (CSRF) in the CTparental admin panel. By combining CSRF with XSS, an attacker can trick the administrator into clicking a link that cancels the filtering for all standard users.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

CTparental 跨站请求伪造漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

CTparental是一个过滤网页内容的工具。可以使用黑名单或白名单过滤不当内容，可以控制浏览互联网的时间和控制设备的活跃时间。 marsat CTparental存在跨站请求伪造漏洞，该漏洞源于在 4.45.03 版本之前的CTparental管理面板容易受到跨站请求伪造(CSRF)的攻击。通过将CSRF与XSS结合起来，攻击者可以诱使管理员单击一个链接，取消对所有标准用户的过滤。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2021-37366

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-37366

请登录查看更多情报信息。

Other References for CVE-2021-37366 (2)

https://gist.github.com/securylight/092ba96a660e07ad76f2a380c2eaa75ax_refsource_MISC
https://gitlab.com/marsat/CTparental/x_refsource_MISC

https://nvd.nist.gov/vuln/detail/CVE-2021-37366

Same Patch Batch · n/a · 2021-08-10 · 70 CVEs total

CVE-2021-32122	9.8 CRITICAL	Netgear NETGEAR 跨站请求伪造漏洞
CVE-2021-38532	6.8 MEDIUM	Netgear NETGEAR和NETGEAR WAC104 安全漏洞
CVE-2021-38538	6.3 MEDIUM	Netgear NETGEAR 跨站脚本漏洞
CVE-2021-38539	6.3 MEDIUM	Netgear NETGEAR 安全漏洞
CVE-2021-38533	5.4 MEDIUM	NETGEAR RAX40 跨站脚本漏洞
CVE-2021-38535	4.3 MEDIUM	Netgear NETGEAR 跨站脚本漏洞
CVE-2021-38536	4.3 MEDIUM	Netgear NETGEAR 跨站脚本漏洞
CVE-2021-38537	4.2 MEDIUM	Netgear NETGEAR 跨站脚本漏洞
CVE-2021-38534	4.1 MEDIUM	NETGEAR 跨站脚本漏洞
CVE-2020-25082	3.8 LOW	Nuvoton NPCT75x 信息泄露漏洞
CVE-2021-38514	2.4 LOW	多款Netgear产品授权问题漏洞
CVE-2021-37389		Chamilo LMS 跨站脚本漏洞
CVE-2020-21684		Xfig fig2dev 缓冲区错误漏洞
CVE-2020-21683		Xfig fig2dev 缓冲区错误漏洞
CVE-2020-21688		FFmpeg 资源管理错误漏洞
CVE-2020-21682		Xfig fig2dev 缓冲区错误漏洞
CVE-2020-21697		FFmpeg 资源管理错误漏洞
CVE-2021-28846		Trendnet多种产品格式化字符串错误漏洞
CVE-2021-37391		Chamilo LMS 跨站脚本漏洞
CVE-2021-28845		TRENDnet 多款产品代码问题漏洞

Showing top 20 of 70 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2021-37366

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-37366

I. Basic Information for CVE-2021-37366

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-37366

III. Intelligence Information for CVE-2021-37366

Other References for CVE-2021-37366 (2)

Same Patch Batch · n/a · 2021-08-10 · 70 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2021-37366

Leave a comment