CVE-2019-25708 | Heatmiser Wifi Thermostat 1.7 networkSetup.htm cross-site request forgery (Exploit 46100 / EDB-46100)

Inserito da Angelo Barbosa | Apr 12, 2026 | CVE

A vulnerability was found in Heatmiser Wifi Thermostat 1.7. It has been rated as problematic. Impacted is an unknown function of the file networkSetup.htm. Performing a manipulation results in cross-site request forgery.

This vulnerability is identified as CVE-2019-25708. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2019-25708 | Heatmiser Wifi Thermostat 1.7 networkSetup.htm cross-site request forgery (Exploit 46100 / EDB-46100)

Post correlati

CVE-2024-2139 | Master Addons for Elementor Plugin up to 2.0.5.6 on WordPress Pricing Table Widget cross site scripting

CVE-2024-10861 | Popup Box Plugin up to 4.9.7 on WordPress Options Update authorization

CVE-2026-2355 | My Calendar Plugin up to 3.7.3 on WordPress Shortcode template cross site scripting

CVE-2025-10163 | List Category Posts Plugin up to 0.91.0 on WordPress Shortcode catlist sql injection