CVE-2024-7205 | CoolKit eWeLink Cloud Service up to 2.18.x Homepage Module insertion of sensitive information into sent data

A vulnerability was found in CoolKit eWeLink Cloud Service up to 2.18.x. It has been rated as problematic. This issue affects some unknown processing of the component Homepage Module. The manipulation leads to insertion of sensitive information into sent data.

The identification of this vulnerability is CVE-2024-7205. The attack may be initiated remotely. There is no exploit available.

This product is a managed service. It is not possible for users to maintain vulnerability countermeasures themselves. It is recommended to upgrade the affected component.

CVE-2024-7205 | CoolKit eWeLink Cloud Service up to 2.18.x Homepage Module insertion of sensitive information into sent data

Post correlati

CVE-2023-42947 | Apple tvOS App sandbox

CVE-2024-28795 | IBM InfoSphere Information Server 11.7 Web UI cross site scripting (XFDB-286832)

CVE-2024-1529 | CMS Made Simple 2.2.14 /admin/adduser.php cross site scripting

CVE-2022-45845 | Nextend Smart Slider 3 Plugin up to 3.5.1.9 on WordPress deserialization