2 matches found
Winston Cross Site Request Forgery (CVE-2020-16256)
A cross site request forgery vulnerability exists in Winston. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2020-16256
The API on Winston 1.5.4 devices is vulnerable to CSRF...