CVE-2013-4864
MiCasaVerde VeraLite firmware 1.5.408 is affected by a Server-Side Request Forgery (SSRF) vulnerability exposed via the url parameter to cgi-bin/cmh/proxy.sh. Remote attackers can cause the device to initiate HTTP requests to intranet/internal servers. Public references cite Trustwave SpiderLabs ...