Browse all 4 CVE security advisories affecting Hometory. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Hometory operates as a smart home platform integrating IoT devices for residential automation. Historically, the platform has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by its four recorded CVEs. These vulnerabilities often stem from inadequate input validation and improper access controls in web interfaces and device communication protocols. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests potential risks for users regarding unauthorized device access and system compromise. Security researchers have noted that patching has been inconsistent, leaving some installations exposed to known exploits.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-30431 | WordPress Mang Board WP plugin <= 1.8.0 - Reflected Cross Site Scripting (XSS) vulnerability — Mang Board WPCWE-79 | 7.1 | High | 2024-03-29 |
| CVE-2024-22306 | WordPress Mang Board WP Plugin <= 1.7.7 is vulnerable to Cross Site Scripting (XSS) — Mang Board WPCWE-79 | 5.9 | Medium | 2024-01-31 |
| CVE-2023-44257 | WordPress Mang Board WP Plugin <= 1.7.6 is vulnerable to Cross Site Request Forgery (CSRF) — Mang Board WPCWE-352 | 4.3 | Medium | 2023-10-10 |
| CVE-2021-26644 | Mangboard SQL注入漏洞 — Mangboard WP BASICCWE-89 | 8.8 | High | 2023-01-20 |
This page lists every published CVE security advisory associated with Hometory. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.