CVE-2024-40490
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-40490
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An issue in Sourcebans++ before v.1.8.0 allows a remote attacker to obtain sensitive information via a crafted XAJAX call to the Forgot Password function.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
SourceBans++ 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
SourceBans++是SourceBans++ Dev团队的一个 Source 引擎的全局管理、禁止和通信管理系统。 SourceBans++ v.1.8.0之前版本存在安全漏洞。远程攻击者利用该漏洞可以通过特制的 XAJAX 调用“Forgot Password”函数来获取敏感信息。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2024-40490
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-40490
请登录查看更多情报信息。
Same Patch Batch · n/a · 2024-11-01 · 24 CVEs total
| CVE-2024-21510 | 5.4 MEDIUM | Sinatra 安全漏洞 |
| CVE-2024-51377 | Faveo Helpdesk 安全漏洞 | |
| CVE-2024-27524 | Chamilo LMS 安全漏洞 | |
| CVE-2024-27525 | Chamilo LMS 安全漏洞 | |
| CVE-2024-48270 | oasys 安全漏洞 | |
| CVE-2024-48410 | Camtrace 安全漏洞 | |
| CVE-2024-48353 | Yealink Meeting Server 安全漏洞 | |
| CVE-2024-48289 | Cypress Bluetooth SDK 安全漏洞 | |
| CVE-2024-48352 | YeaLink Meeting Server 安全漏洞 | |
| CVE-2024-48217 | SiSMART 安全漏洞 | |
| CVE-2024-28265 | IBOS 安全漏洞 | |
| CVE-2024-22733 | TP-LINK MR200 安全漏洞 | |
| CVE-2024-51407 | Floodlight OpenFlow Controller 安全漏洞 | |
| CVE-2024-51247 | DrayTek Vigor 3900 安全漏洞 | |
| CVE-2024-51245 | DrayTek Vigor 3900 安全漏洞 | |
| CVE-2024-51399 | Altai IX500 安全漏洞 | |
| CVE-2024-51398 | Altai IX500 安全漏洞 | |
| CVE-2024-51431 | LB-LINK BL-WR 1300H 安全漏洞 | |
| CVE-2024-51252 | DrayTek Vigor 3900 安全漏洞 | |
| CVE-2024-51406 | Floodlight OpenFlow Controller 安全漏洞 |
Showing top 20 of 24 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2024-40490
No comments yet