3 matches found
Critical Security Bugs Uncovered in VoIPmonitor Monitoring Software
Critical security vulnerabilities have been uncovered in VoIPmonitor software that, if successfully exploited, could allow unauthenticated attackers to escalate privileges to the administrator level and execute arbitrary commands. Following responsible disclosure by researchers from Kerbit, an...
CVE-2022-24260
creationtimestamp| type| source ---|---|--- 2022-02-04 20:31:01+00:00| seen| https://t.me/cibsecurity/36865 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26 2025-02-21 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities -...
CVE-2022-24260
Voipmonitor GUI contains a pre-auth SQL injection (CVE-2022-24260 ) in the API/utility paths (api.php and utilities.php) prior to v24.96 that allows an attacker to escalate to Administrator privileges and potentially extract data. The Nuclei template confirms the vulnerability class and affected ...