Hackerbay

Oneuptime

23 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.2

CVE-2025-66028

Exploit
  • EPSS 0.08%
  • Veröffentlicht 26.11.2025 18:11:49
  • Zuletzt bearbeitet 05.12.2025 13:57:23

OneUptime is a solution for monitoring and managing online services. Prior to version 8.0.5567, OneUptime is vulnerable to privilege escalation via Login Response Manipulation. During the login process, the server response included a parameter called...

8.1

CVE-2025-65966

Exploit
  • EPSS 0.08%
  • Veröffentlicht 26.11.2025 18:10:16
  • Zuletzt bearbeitet 05.12.2025 14:05:09

OneUptime is a solution for monitoring and managing online services. In version 9.0.5598, a low-permission user can create new accounts through a direct API request instead of being restricted to the intended interface. This issue has been patched in...

8.3

CVE-2024-29194

Exploit
  • EPSS 0.09%
  • Veröffentlicht 24.03.2024 19:15:07
  • Zuletzt bearbeitet 05.12.2025 19:56:24

OneUptime is a solution for monitoring and managing online services. The vulnerability lies in the improper validation of client-side stored data within the web application. Specifically, the is_master_admin key, stored in the local storage of the br...