BlueOnyx 5209R suffers from a cross site request forgery vulnerability.