CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-26477

An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the api parameter of the oauth, amazon_sns, export endpoints.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.3%

CVSS Severity

CVSS v3 Score 7.5

References

https://github.com/Ev3rR3d/Statping_Poc
https://github.com/Ev3rR3d/Statping_Poc/tree/main/CVE-2024-26477
https://github.com/statping-ng/statping-ng
https://statping-ng.github.io/

Products affected by CVE-2024-26477

Statping-Ng » Statping-Ng » Version: 0.91.0

cpe:2.3:a:statping-ng:statping-ng:0.91.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-26477

Products

Pricing

Contact Us