CVE-2024-26478

Description

An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the /api/users endpoint.

PUBLISHED Reserved 2024-02-19 | Published 2026-02-11 | Updated 2026-02-12 | Assigner mitre

References

github.com/Ev3rR3d/Statping_Poc

statping-ng.github.io/

github.com/statping-ng/statping-ng

github.com/Ev3rR3d/Statping_Poc/tree/main/CVE-2024-26478

cve.org (CVE-2024-26478)

nvd.nist.gov (CVE-2024-26478)

Download JSON