Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 16 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-15141 Halo Configuration actuator information disclosure -Halo Low 3.1 2025-12-28 15:02:05 Deep Dive
CVE-2025-14117 fit2cloud Halo cross-site request forgery fit2cloudHalo Medium 4.3 2025-12-06 05:32:06 Deep Dive
CVE-2024-56156 Halo Vulnerable to Stored XSS and RCE via File Upload Bypass halo-devhalo 中危 -2025-04-25 15:08:01 Deep Dive
CVE-2024-45252 Elsight – CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') ElsightHalo version 11.7.1.5 Critical 9.8 2024-10-06 12:26:12 Deep Dive
CVE-2024-45251 Elsight – CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') ElsightHalo version 11.7.1.5 Critical 9.8 2024-10-06 12:25:17 Deep Dive
CVE-2024-43793 Halo's editor has a stored XSS vulnerability halo-devhalo Medium 6.3 2024-09-11 14:37:58 Deep Dive
CVE-2024-43792 Halo's editor has a stored Cross-Site Scripting vulnerability halo-devhalo Medium 6.3 2024-09-02 16:15:40 Deep Dive
CVE-2024-6203 HaloITSM - Password Reset Poisoning Halo Service SolutionsHaloITSM High 8.3 2024-08-06 06:03:11 Deep Dive
CVE-2024-6202 HaloITSM - SAML XML Signature Wrapping (XSW) Halo Service SolutionsHaloITSM Critical 9.8 2024-08-06 06:01:41 Deep Dive
CVE-2024-6201 HaloITSM - Emailing Template Injection Halo Service SolutionsHaloITSM Medium 5.3 2024-08-06 05:59:30 Deep Dive
CVE-2024-6200 HaloITSM - Stored Cross-Site Scripting in Tickets Halo Service SolutionsHaloITSM High 8.0 2024-08-06 05:54:54 Deep Dive
CVE-2022-36784 Elsight – Elsight Halo Remote Code Execution (RCE) ElsightElsight Halo Critical 9.8 2022-11-17 22:27:54 Deep Dive
CVE-2022-22125 Halo CMS - Stored Cross-Site Scripting (XSS) in Article's Tag halo-devhalo Medium 4.8 2022-01-13 16:45:18 Deep Dive
CVE-2022-22124 Halo CMS - Stored Cross-Site Scripting (XSS) in Profile Image halo-devhalo Medium 5.4 2022-01-13 16:45:16 Deep Dive
CVE-2022-22123 Halo CMS - Stored Cross-Site Scripting (XSS) in Article's Title halo-devhalo Medium 5.4 2022-01-13 16:45:15 Deep Dive
CVE-2019-5625 Eaton Halo Home Android App Insecure Storage EatonHALO Home 高危 -2019-05-22 18:11:12 Deep Dive