Lucene search
K

53 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:56 a.m.8 views

CVE-2020-12280

iSmartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to open/close a specified garage door/gate via /isg/opendoor.php...

6.5CVSS7.1AI score0.00494EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-5119

Malware in sbrugna...

7.5CVSS7.5AI score0.00931EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-5125

Malware in sbrugna...

9.8CVSS9.2AI score0.01308EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-4593

Malware in sbrugna...

6.5CVSS6.6AI score0.00494EPSS
Exploits1References3
Openbugbounty
Openbugbounty
added 2024/07/11 8:10 a.m.9 views

durhamgaragedoorguys.com Cross Site Scripting vulnerability OBB-3943848

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/03/22 6:43 p.m.22 views

Canada revisits decision to ban Flipper Zero

In February 2024 the Canadian government announced plans to ban the sale of the Flipper Zero, mainly because of its reported use to steal cars. The Flipper Zero is a portable device that can be used in penetration testing with a focus on wireless devices and access control systems. If that doesnt...

7.2AI score
Exploits0
NVD
NVD
added 2024/01/03 8:15 p.m.27 views

CVE-2023-5880

When the Genie Company Aladdin Connect garage door opener Retrofit-Kit Model ALDCM is placed into configuration mode the web servers “Garage Door Control Module Setup” page is vulnerable to XSS via a broadcast SSID name containing malicious code with client side Java Script and/or HTML. This allo...

8.8CVSS8.2AI score0.00553EPSS
Exploits0References1
OSV
OSV
added 2024/01/03 8:15 p.m.5 views

CVE-2023-5881

Unauthenticated access permitted to web interface page The Genie Company Aladdin Connect Retrofit-Kit Model ALDCM "Garage Door Control Module Setup" and modify the Garage door's SSID settings...

8.2CVSS5.8AI score0.00605EPSS
Exploits0References1
NVD
NVD
added 2024/01/03 8:15 p.m.23 views

CVE-2023-5881

Unauthenticated access permitted to web interface page The Genie Company Aladdin Connect Retrofit-Kit Model ALDCM "Garage Door Control Module Setup" and modify the Garage door's SSID settings...

8.2CVSS8.2AI score0.00605EPSS
Exploits0References1
Prion
Prion
added 2024/01/03 8:15 p.m.19 views

Design/Logic Flaw

Unauthenticated access permitted to web interface page The Genie Company Aladdin Connect Retrofit-Kit Model ALDCM "Garage Door Control Module Setup" and modify the Garage door's SSID settings...

6.4CVSS7.1AI score0.00605EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2024/01/03 8:15 p.m.24 views

Code injection

When the Genie Company Aladdin Connect garage door opener Retrofit-Kit Model ALDCM is placed into configuration mode the web servers “Garage Door Control Module Setup” page is vulnerable to XSS via a broadcast SSID name containing malicious code with client side Java Script and/or HTML. This allo...

6.8CVSS5.9AI score0.00553EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/01/03 7:22 p.m.28 views

CVE-2023-5881 Unauthenticated access permitted to web interface page "Garage Door Control Module Setup"

Unauthenticated access permitted to web interface page The Genie Company Aladdin Connect Retrofit-Kit Model ALDCM "Garage Door Control Module Setup" and modify the Garage door's SSID settings...

8.4AI score0.00605EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/01/03 7:22 p.m.17 views

CVE-2023-5881 Unauthenticated access permitted to web interface page "Garage Door Control Module Setup"

Unauthenticated access permitted to web interface page The Genie Company Aladdin Connect Retrofit-Kit Model ALDCM "Garage Door Control Module Setup" and modify the Garage door's SSID settings...

6.9AI score0.00605EPSS
Exploits0References1
CVE
CVE
added 2024/01/03 7:22 p.m.51 views

CVE-2023-5881

CVE-2023-5881 affects the Genie Aladdin Connect retrofit kit (ALDCM) by allowing unauthenticated access to the device web server’s Garage Door Control Module Setup page, enabling modification of the garage door’s Wi‑Fi SSID settings. The vulnerability is reachable over the local network (TCP port...

8.2CVSS8.2AI score0.00605EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/03 7:16 p.m.15 views

CVE-2023-5880 Cross-site Scripting (XSS) injected into Aladdin Connect garage door opener (Retrofit-Kit) configuration setup webserver console via broadcast SSID name

When the Genie Company Aladdin Connect garage door opener Retrofit-Kit Model ALDCM is placed into configuration mode the web servers “Garage Door Control Module Setup” page is vulnerable to XSS via a broadcast SSID name containing malicious code with client side Java Script and/or HTML. This allo...

5.8AI score0.00553EPSS
Exploits0References1
CVE
CVE
added 2024/01/03 7:16 p.m.63 views

CVE-2023-5880

CVE-2023-5880 affects Genie Aladdin Connect Retrofit-Kit (Model ALDCM). When the device is in configuration mode, the web server page “Garage Door Control Module Setup” is vulnerable to cross-site scripting via a broadcast SSID name containing HTML/JavaScript, enabling injection of code into a us...

8.8CVSS8.2AI score0.00553EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/01/03 7:16 p.m.30 views

CVE-2023-5880 Cross-site Scripting (XSS) injected into Aladdin Connect garage door opener (Retrofit-Kit) configuration setup webserver console via broadcast SSID name

When the Genie Company Aladdin Connect garage door opener Retrofit-Kit Model ALDCM is placed into configuration mode the web servers “Garage Door Control Module Setup” page is vulnerable to XSS via a broadcast SSID name containing malicious code with client side Java Script and/or HTML. This allo...

8.3AI score0.00553EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blog
added 2024/01/03 6:58 p.m.43 views

Genie Aladdin Connect Retrofit Garage Door Opener: Multiple Vulnerabilities

Rapid7, Inc. Rapid7 discovered vulnerabilities in Aladdin Connect retrofit kit garage door opener and Android mobile application produced by Genie. The affected products are: Aladdin Garage door smart retrofit kit, Model ALDCM Android Mobile application ALADDIN Connect, Version 5.65 Build 2075...

6.8CVSS6.7AI score0.00605EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/01/03 12:0 a.m.9 views

PT-2024-14839 · Genie Company · Aladdin Connect

Name of the Vulnerable Software and Affected Versions: The Genie Company Aladdin Connect Retrofit-Kit Model ALDCM affected versions not specified Description: Unauthenticated access is permitted to the web interface page "Garage Door Control Module Setup" of The Genie Company Aladdin Connect...

8.2CVSS8.8AI score0.00605EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/01/03 12:0 a.m.4 views

Genie Aladdin Connect Access Control Error Vulnerability

Genie Aladdin Connect is a garage door controller from Genie. An access control error vulnerability exists in Genie Aladdin Connect Retrofit-Kit Model ALDCM that originates from allowing an unauthenticated attacker to access the SSID settings on the Garage Door Control Module Setup page...

8.2CVSS6.9AI score0.00605EPSS
Exploits0References3
Rows per page
Query Builder