CVE-2014-2225
CVE-2014-2225 is a CSRF vulnerability in Ubiquiti Networks UniFi Controller prior to 3.2.1. The flaw enables remote attackers to hijack administrator sessions by issuing forged requests to multiple API endpoints (e.g., api/add/admin, api/set/setting/guest_access, api/cmd/stamgr, api/cmd/cfgmgr, e...