Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-54806

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00687EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2025/07/23 12:57 a.m.9 views

CVE-2024-55040

Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...

6.1CVSS7.5AI score0.00687EPSS
Exploits2References1
NVD
NVD
added 2025/07/21 4:15 p.m.4 views

CVE-2024-55040

Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...

6.1CVSS0.00687EPSS
Exploits2References3
OSV
OSV
added 2025/07/21 4:15 p.m.4 views

CVE-2024-55040

Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...

6.1CVSS6.2AI score0.00687EPSS
Exploits2References3
CVE
CVE
added 2025/07/21 12:0 a.m.22 views

CVE-2024-55040

CVE-2024-55040 affects Sensaphone WEB600 Monitoring System (firmware v1.6.5.H and earlier). The issue is a cross-site scripting (XSS) vulnerability that can be triggered by crafted GET requests to /@.xml, with payloads placed in parameters such as g7200, g7300, g4601, and g1F02. The concrete impa...

6.1CVSS6.9AI score0.00687EPSS
Exploits2References3Affected Software1
Cvelist
Cvelist
added 2025/07/21 12:0 a.m.8 views

CVE-2024-55040

Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...

0.00687EPSS
Exploits2References3
CNNVD
CNNVD
added 2025/07/21 12:0 a.m.1 views

Sensaphone WEB600 Monitoring System 安全漏洞

Sensaphone WEB600 Monitoring System is a remote monitoring and data logging device from Sensaphone USA. A security vulnerability exists in Sensaphone WEB600 Monitoring System version 1.6.5.H and prior versions, which stems from vulnerability to cross-site scripting attacks that could lead to the...

6.1CVSS6.2AI score0.00687EPSS
Exploits2References4
Vulnrichment
Vulnrichment
added 2025/07/21 12:0 a.m.4 views

CVE-2024-55040

Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters...

7.5AI score0.00687EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2025/02/05 12:0 a.m.5 views

PT-2025-5686 · Sensaphone · Sensaphone Web600

Name of the Vulnerable Software and Affected Versions: Sensaphone Web600 affected versions not specified Description: The issue concerns stored cross-site scripting XSS in the system's Setup, Profile, and Zone options. This means that an attacker could potentially inject malicious code into these...

6.1CVSS5.3AI score0.00687EPSS
Exploits2References7
GithubExploit
GithubExploit
added 2024/11/22 10:25 p.m.72 views

Exploit for Cross-site Scripting in Sensaphone Web600_Firmware

SENSAPHONE VULNERABILITY DISCLOSURE Summary In mid-Sep...

6.1CVSS5.6AI score0.00687EPSS
Exploits2
Rows per page
Query Builder