Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
HomeAutomation 3.3.2 is affected by Cross Site Request Forgery (CSRF). The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malicious web site.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Subreddit Home Automation 跨站请求伪造漏洞
Vulnerability Description
Subreddit Home Automation是Subreddit社区的一个自动化设备。一个自动化电灯。 HomeAutomation 3.3.2 版本存在跨站请求伪造漏洞,该漏洞允许用户通过HTTP请求执行某些操作,而无需执行任何有效性检查来验证请求。
CVSS Information
N/A
Vulnerability Type
N/A