CVE-2020-21989
CVE-2020-21989 affects HomeAutomation 3.3.2. The issue is a CSRF flaw in the web interface that allows actions to be performed with administrative privileges if a logged-in user visits a malicious site. Affected component is the HTTP interface; root cause is lack of validity checks on requests. P...