Eaton UPS 9PX 8000 SP Cross-Site Request Forgery Vulnerability
The Eaton UPS 9PX 8000 SP is a power management device from Eaton USA. A cross-site request forgery vulnerability exists in the change-password feature in the Eaton UPS 9PX 8000 SP, which can be exploited by a remote attacker to force an administrator logged in to the device to unknowingly perfor...