CVE-2015-8255
AXIS Communications products allow CSRF, as demonstrated by admin/pwdgrp.cgi, vaconfig.cgi, and admin/local_del.cgi.
EXPLOIT-DB: https://www.exploit-db.com/exploits/41626/
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8255
published: 9. 4. 2017