Personal Fav. #1:
CSRF + auth bypass
ç
Ideal when web int. NOT enabled on WAN
ç
Any admin setting can be changed
ç
Payload is launched when admin tricked to visit
3
rd-
party evil page
ç
Evil page makes browser send forged request
to vulnerable device