Lucene search
+L

7 matches found

Nuclei
Nuclei
added 2026/02/04 7:0 a.m.8 views

DAEnetIP4 METO v1.25 - Session Hijacking

DAEnetIP4 METO v1.25 contains improper session management in the /loginok.htm endpoint, letting attackers hijack sessions, exploit requires attacker to control or intercept session tokens. id: CVE-2025-28242 info: name: DAEnetIP4 METO v1.25 - Session Hijacking author: 0xAkoko severity: high...

9.8CVSS5.9AI score0.01769EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/26 5:28 a.m.5 views

CVE-2025-28242

Improper session management in the /loginok.htm endpoint of DAEnetIP4 METO v1.25 allows attackers to execute a session hijacking attack...

9.8CVSS7.2AI score0.01769EPSS
Exploits0References1
NVD
NVD
added 2025/04/18 6:15 p.m.16 views

CVE-2025-28242

Improper session management in the /loginok.htm endpoint of DAEnetIP4 METO v1.25 allows attackers to execute a session hijacking attack...

9.8CVSS0.01769EPSS
Exploits0References1
Circl
Circl
added 2025/04/18 5:59 p.m.6 views

CVE-2025-28242

creationtimestamp| type| source ---|---|--- 2025-04-18 17:59:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12511 2025-04-18 19:35:01+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ln4dkb6h2ni2 2025-04-18...

9.8CVSS5.3AI score0.01769EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/04/18 12:0 a.m.166 views

CVE-2025-28242

Improper session management in the /loginok.htm endpoint of DAEnetIP4 METO v1.25 allows attackers to execute a session hijacking attack...

0.01769EPSS
Exploits0References1
CVE
CVE
added 2025/04/18 12:0 a.m.85 views

CVE-2025-28242

DAEnetIP4 METO v1.25 is affected by improper session management in the /login_ok.htm endpoint, enabling session hijacking. The issue, documented in multiple sources (CVE-2025-28242 and the DAEnetIP4 METO/Nuclei template), indicates attackers can hijack user sessions if they control or intercept s...

9.8CVSS7.2AI score0.01769EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/18 12:0 a.m.4 views

CVE-2025-28242

Improper session management in the /loginok.htm endpoint of DAEnetIP4 METO v1.25 allows attackers to execute a session hijacking attack...

7.1AI score0.01769EPSS
Exploits0References1
Rows per page
Query Builder