Altenergy Power Control Software vulnerabilities
2 known vulnerabilities affecting altenergy/power_control_software.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2024-11305P2MEDIUMCVSS 6.3ExploitedPoCv202411082024-11-18
CVE-2024-11305 [MEDIUM] CWE-74 CVE-2024-11305: A vulnerability classified as critical was found in Altenergy Power Control Software up to 20241108.
A vulnerability classified as critical was found in Altenergy Power Control Software up to 20241108. This vulnerability affects the function get_status_zigbee of the file /index.php/display/status_zigbee. The manipulation of the argument date leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public an
nvd
CVE-2024-11306P4MEDIUMCVSS 5.3v202411082024-11-18
CVE-2024-11306 [MEDIUM] CWE-266 CVE-2024-11306: A vulnerability, which was classified as critical, has been found in Altenergy Power Control Softwar
A vulnerability, which was classified as critical, has been found in Altenergy Power Control Software up to 20241108. This issue affects some unknown processing of the file /index.php/display/database/. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used
nvd