38 matches found
EUVD-2026-36782
Incorrect access control in statping-ng v0.93.0 allows attackers to escalate privileges to Administrator and access sensitive components...
CVE-2026-50884
Incorrect access control in statping-ng v0.93.0 allows attackers to escalate privileges to Administrator and access sensitive components...
CVE-2026-50884
Incorrect access control in statping-ng v0.93.0 allows attackers to escalate privileges to Administrator and access sensitive components...
CVE-2026-50884
CVE-2026-50884 affects statping-ng v0.93.0. Description: incorrect access control may allow attackers to escalate privileges to Administrator and access sensitive components. Documents list no public patch/version to mitigate or confirm exploitation details; no explicit root-cause technical speci...
PT-2026-49325
Name of the Vulnerable Software and Affected Versions statping-ng version 0.93.0 Description Incorrect access control allows attackers to escalate privileges to Administrator and access sensitive components. Recommendations At the moment, there is no information about a newer version that contain...
CVE-2024-26479
An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the Command execution function...
CVE-2024-26480
An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the admin parameter...
CVE-2024-26477
An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the api parameter of the oauth, amazonsns, export endpoints...
CVE-2024-26478
An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the /api/users endpoint...
CVE-2024-26478
An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the /api/users endpoint...
CVE-2024-26480
An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the admin parameter...
CVE-2024-26479
An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the Command execution function...
CVE-2024-26477
An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the api parameter of the oauth, amazonsns, export endpoints...
PT-2026-7652
Name of the Vulnerable Software and Affected Versions Statping-ng version 0.91.0 Description An issue allows an attacker to obtain sensitive information via a crafted request to the /api/users endpoint. The vulnerable parameter is not specified. Recommendations Update to a newer version that...
CVE-2024-26480
An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the admin parameter...
CVE-2024-26480
An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the admin parameter...
CVE-2024-26479
An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the Command execution function...
CVE-2024-26479
An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the Command execution function...
CVE-2024-26478
CVE-2024-26478 affects Statping-ng v0.91.0, where a flaw in the /api/users endpoint can lead to disclosure of sensitive information. Public sources consistently identify the issue as an authorization/privacy weakness tied to that endpoint; Red Hat, NVD, OSV, and third-party advisories reference t...
CVE-2024-26480
CVE-2024-26480 affects Statping-ng v0.91.0, where a crafted request to the admin parameter can disclose sensitive information. This vulnerability is reported across multiple sources (RH, NVD, OSV, CNNVD, etc.) with consistent description; root cause details are not fully elaborated in the provide...