Shodan
Vulnerabilities
Vulnerable Software
Naver:  Security Vulnerabilities
CVE-2025-49223
billboard.js before 3.15.1 was discovered to contain a prototype pollution via the function generate, which could allow attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.
CVSS Score
9.8
EPSS Score
0.002
Published
2025-06-04
CVE-2024-28216
nGrinder before 3.5.9 allows an attacker to obtain the results of webhook requests due to lack of access control, which could be the cause of information disclosure and limited Server-Side Request Forgery.
CVSS Score
5.4
EPSS Score
0.003
Published
2024-03-07
CVE-2024-28211
nGrinder before 3.5.9 allows connection to malicious JMX/RMI server by default, which could be the cause of executing arbitrary code via RMI registry by remote attacker.
CVSS Score
9.8
EPSS Score
0.031
Published
2024-03-07
CVE-2024-28212
nGrinder before 3.5.9 uses old version of SnakeYAML, which could allow remote attacker to execute arbitrary code via unsafe deserialization.
CVSS Score
9.8
EPSS Score
0.074
Published
2024-03-07
CVE-2024-28213
nGrinder before 3.5.9 allows to accept serialized Java objects from unauthenticated users, which could allow remote attacker to execute arbitrary code via unsafe Java objects deserialization.
CVSS Score
9.8
EPSS Score
0.074
Published
2024-03-07
CVE-2024-28214
nGrinder before 3.5.9 allows to set delay without limitation, which could be the cause of Denial of Service by remote attacker.
CVSS Score
2.7
EPSS Score
0.005
Published
2024-03-07
CVE-2024-28215
nGrinder before 3.5.9 allows an attacker to create or update webhook configuration due to lack of access control, which could be the cause of information disclosure and limited Server-Side Request Forgery.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-03-07
CVE-2023-25632
The Android Mobile Whale browser app before 3.0.1.2 allows the attacker to bypass its browser unlock function via 'Open in Whale' feature.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-11-27
CVE-2022-24077
Naver Cloud Explorer Beta allows the attacker to execute arbitrary code as System privilege via malicious DLL injection.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-06-13
CVE-2021-33592
NAVER Toolbar before 4.0.30.323 allows remote attackers to execute arbitrary code via a crafted upgrade.xml file. Special characters in filename parameter can be the cause of bypassing code signing check function.
CVSS Score
9.8
EPSS Score
0.01
Published
2021-07-19


Products
Pricing
Contact Us

Shodan ® - All rights reserved