8 matches found
CVE-2024-54820
XOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection vulnerability in the login page. This vulnerability allows attackers to extract all usernames and passwords via a crafted input...
CVE-2024-54820
XOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection vulnerability in the login page. This vulnerability allows attackers to extract all usernames and passwords via a crafted input...
XOne Web Monitor 安全漏洞
XOne Web Monitor is a monitoring dashboard from XOne. A security vulnerability exists in XOne Web Monitor version v02.10.2024.530, which stems from the presence of a SQL injection vulnerability that allows an attacker to steal all usernames and passwords via specially crafted input...
CVE-2024-54820
XOne Web Monitor has an unauthenticated SQL injection in the login path. Affects version 02.10.2024.530 and framework 1.0.4.9, exploitable via the login endpoint (e.g. /webcore/api/itf/DoAction) where the where clause on LOGIN can be manipulated to enumerate all usernames and passwords. Evidence ...
CVE-2024-54820
XOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection vulnerability in the login page. This vulnerability allows attackers to extract all usernames and passwords via a crafted input...
CVE-2024-54820
XOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection vulnerability in the login page. This vulnerability allows attackers to extract all usernames and passwords via a crafted input...
PT-2025-7776 · Unknown +1 · Xone Web Monitor +1
Name of the Vulnerable Software and Affected Versions: XOne Web Monitor version 02.10.2024.530 XOne Web Monitor framework version 1.0.4.9 Description: The issue is a SQL injection vulnerability located in the login page, allowing attackers to extract all usernames and passwords via a crafted inpu...
Exploit for CVE-2024-54820
Vulnerability: Unauthenticated SQL Injection - Clear Credentia...