High severity8.8NVD Advisory· Published Apr 27, 2021· Updated Jun 17, 2026
CVE-2020-21989
CVE-2020-21989
Description
HomeAutomation 3.3.2 is affected by Cross Site Request Forgery (CSRF). The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malicious web site.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- HomeAutomation/HomeAutomationdescription
- Range: =3.3.2
Patches
Vulnerability mechanics
References
2- www.exploit-db.com/exploits/47808nvdExploitThird Party AdvisoryVDB Entry
- www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5558.phpnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.