kakarotossj3/CVEs

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-63354 ↗	Feb 9, 2026Monday, 9 February 2026, 15:16	4.8 MEDIUM	—
Hitron HI3120 v7.2.4.5.2b1 allows stored XSS via the Parental Control option when creating a new filter. The device fails to properly handle inputs, allowing an attacker to inject and execute JavaScript.
CVE-2025-66963 ↗	Dec 15, 2025Monday, 15 December 2025, 16:15	5.5 MEDIUM	—
An issue in Hitron HI3120 v.7.2.4.5.2b1 allows a local attacker to obtain sensitive information via the Logout option in the index.html