Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-54806

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00687EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2025/07/23 12:57 a.m.11 views

CVE-2024-55040

Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...

6.1CVSS7.5AI score0.00687EPSS
Exploits2References1
OSV
OSV
added 2025/07/21 4:15 p.m.4 views

CVE-2024-55040

Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...

6.1CVSS6.2AI score0.00687EPSS
Exploits2References3
NVD
NVD
added 2025/07/21 4:15 p.m.6 views

CVE-2024-55040

Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...

6.1CVSS0.00687EPSS
Exploits2References3
CVE
CVE
added 2025/07/21 12:0 a.m.23 views

CVE-2024-55040

CVE-2024-55040 affects Sensaphone WEB600 Monitoring System (firmware v1.6.5.H and earlier). The issue is a cross-site scripting (XSS) vulnerability that can be triggered by crafted GET requests to /@.xml, with payloads placed in parameters such as g7200, g7300, g4601, and g1F02. The concrete impa...

6.1CVSS6.9AI score0.00687EPSS
Exploits2References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/21 12:0 a.m.4 views

CVE-2024-55040

Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...

7.5AI score0.00687EPSS
Exploits2References3
Cvelist
Cvelist
added 2025/07/21 12:0 a.m.11 views

CVE-2024-55040

Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...

0.00687EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2025/02/05 12:0 a.m.6 views

PT-2025-5686 · Sensaphone · Sensaphone Web600

Name of the Vulnerable Software and Affected Versions: Sensaphone Web600 affected versions not specified Description: The issue concerns stored cross-site scripting XSS in the system's Setup, Profile, and Zone options. This means that an attacker could potentially inject malicious code into these...

6.1CVSS5.3AI score0.00687EPSS
Exploits2References7
Packet Storm News
Packet Storm News
added 2025/02/05 12:0 a.m.4 views

Sensaphone WEB600 Monitoring System Cross Site Scripting

The Sensaphone WEB600 Monitoring System was found to suffer from multiple persistent cross site scripting vulnerabilities...

6.1CVSS6.6AI score0.00687EPSS
Exploits2
Openbugbounty
Openbugbounty
added 2024/03/10 9:36 a.m.11 views

sensaphone.com Cross Site Scripting vulnerability OBB-3868723

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/05/30 5:44 p.m.16 views

sensaphone.com Cross Site Scripting vulnerability OBB-3368463

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/10/19 6:31 a.m.12 views

sensaphone.com Cross Site Scripting vulnerability OBB-1422392

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Rows per page
Query Builder