CVE-2020-24847
FruityWifi (versions up to 2.4) is affected by a Cross-Site Request Forgery (CSRF) due to missing CSRF protection in page_config_adv.php. An unauthenticated attacker can lure a victim to a malicious site and cause changes to the device’s network configuration, specifically the newSSID and hostapd...