12 matches found
EUVD-2024-54806
Malicious code in bioql PyPI...
CVE-2024-55040
Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...
CVE-2024-55040
Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...
CVE-2024-55040
Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...
CVE-2024-55040
CVE-2024-55040 affects Sensaphone WEB600 Monitoring System (firmware v1.6.5.H and earlier). The issue is a cross-site scripting (XSS) vulnerability that can be triggered by crafted GET requests to /@.xml, with payloads placed in parameters such as g7200, g7300, g4601, and g1F02. The concrete impa...
CVE-2024-55040
Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...
CVE-2024-55040
Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...
PT-2025-5686 · Sensaphone · Sensaphone Web600
Name of the Vulnerable Software and Affected Versions: Sensaphone Web600 affected versions not specified Description: The issue concerns stored cross-site scripting XSS in the system's Setup, Profile, and Zone options. This means that an attacker could potentially inject malicious code into these...
Sensaphone WEB600 Monitoring System Cross Site Scripting
The Sensaphone WEB600 Monitoring System was found to suffer from multiple persistent cross site scripting vulnerabilities...
sensaphone.com Cross Site Scripting vulnerability OBB-3868723
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
sensaphone.com Cross Site Scripting vulnerability OBB-3368463
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
sensaphone.com Cross Site Scripting vulnerability OBB-1422392
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...