Scan2Net — Vulnerabilities & Security Advisories 14

All 14 CVE vulnerabilities found in Scan2Net, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Paused
CVE-2024-28143	Insecure Password Change Function CWE-620	9.8	-	2024-12-12
CVE-2024-28146	Hardcoded credentials CWE-798	9.8	-	2024-12-12
CVE-2024-50584	SQL Injection CWE-89	8.8	-	2024-12-12
CVE-2024-28145	Unauthenticated SQL Injection CWE-89	9.8	-	2024-12-12
CVE-2024-28144	Broken Access Control CWE-384	9.8	-	2024-12-12
CVE-2024-36494	Reflected Cross Site Scripting CWE-79	6.1	-	2024-12-12
CVE-2024-36498	Stored cross site scripting CWE-79	4.8	-	2024-12-12
CVE-2024-47947	Stored cross site scripting CWE-79	4.8	-	2024-12-12
CVE-2024-28142	Stored cross site scripting CWE-79	5.4	-	2024-12-12
CVE-2024-28141	Cross-Site Request-Forgery CWE-352	8.8	-	2024-12-11
CVE-2024-28140	Violation of Least Privilege Principle CWE-250	9.8	-	2024-12-11
CVE-2024-28139	Privilege escalation through sudo misconfiguration CWE-250	7.8	-	2024-12-11
CVE-2024-47946	OS Command Execution through Arbitrary File Upload CWE-434	8.8	-	2024-12-10
CVE-2024-28138	OS Command Injection CWE-78	9.8	-	2024-12-10

All 14 known CVE vulnerabilities affecting Scan2Net with full Chinese analysis, references, and POCs where available.