Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/02/26 12:26 a.m.8 views

CVE-2024-54820

XOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection vulnerability in the login page. This vulnerability allows attackers to extract all usernames and passwords via a crafted input...

9.8CVSS8AI score0.01149EPSS
Exploits1References1
NVD
NVD
added 2025/02/24 6:15 p.m.15 views

CVE-2024-54820

XOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection vulnerability in the login page. This vulnerability allows attackers to extract all usernames and passwords via a crafted input...

9.8CVSS0.01149EPSS
Exploits1References2
CVE
CVE
added 2025/02/24 12:0 a.m.57 views

CVE-2024-54820

XOne Web Monitor has an unauthenticated SQL injection in the login path. Affects version 02.10.2024.530 and framework 1.0.4.9, exploitable via the login endpoint (e.g. /webcore/api/itf/DoAction) where the where clause on LOGIN can be manipulated to enumerate all usernames and passwords. Evidence ...

9.8CVSS8.1AI score0.01149EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/02/24 12:0 a.m.8 views

CVE-2024-54820

XOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection vulnerability in the login page. This vulnerability allows attackers to extract all usernames and passwords via a crafted input...

8.3AI score0.01149EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/02/24 12:0 a.m.2 views

XOne Web Monitor 安全漏洞

XOne Web Monitor is a monitoring dashboard from XOne. A security vulnerability exists in XOne Web Monitor version v02.10.2024.530, which stems from the presence of a SQL injection vulnerability that allows an attacker to steal all usernames and passwords via specially crafted input...

9.8CVSS7.6AI score0.01149EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/02/24 12:0 a.m.7 views

PT-2025-7776 · Unknown +1 · Xone Web Monitor +1

Name of the Vulnerable Software and Affected Versions: XOne Web Monitor version 02.10.2024.530 XOne Web Monitor framework version 1.0.4.9 Description: The issue is a SQL injection vulnerability located in the login page, allowing attackers to extract all usernames and passwords via a crafted inpu...

9.8CVSS9.4AI score0.01149EPSS
Exploits1References9
Cvelist
Cvelist
added 2025/02/24 12:0 a.m.15 views

CVE-2024-54820

XOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection vulnerability in the login page. This vulnerability allows attackers to extract all usernames and passwords via a crafted input...

0.01149EPSS
Exploits1References2
GithubExploit
GithubExploit
added 2024/11/17 12:31 p.m.99 views

Exploit for CVE-2024-54820

Vulnerability: Unauthenticated SQL Injection - Clear Credentia...

9.8CVSS8.5AI score0.01149EPSS
Exploits1
Rows per page
Query Builder