CVE-2024-40119 | Nepstech NTPL-Xpon1GFEVN 2.0.1 Password Change cross-site request forgery

Posted by Angelo Barbosa | Jul 17, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Nepstech NTPL-Xpon1GFEVN 2.0.1. Affected is an unknown function of the component Password Change Handler. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2024-40119. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-40119 | Nepstech NTPL-Xpon1GFEVN 2.0.1 Password Change cross-site request forgery

Related Posts

CVE-2024-29232 | Synology Surveillance Station prior 9.2.0-9289/9.2.0-11289 WebAPI Alert.Enum sql injection (SA_24_04)

CVE-2024-28556 | SourceCodester PHP Task Management System 1.0 admin-manage-user.php sql injection

CVE-2024-2338 | Dalibo PostgreSQL Anonymizer up to 1.2.x sql injection

CVE-2023-6984 | ideaboxcreations PowerPack Addons for Elementor Plugin up to 2.7.13 on WordPress cross-site request forgery