Writeup Exploits

60,542 exploits tracked across all sources.

Sort: Activity Stars
CVE-2026-22878 WRITEUP MEDIUM
mobility46.se - Unprotected Credential Exposure via Web-Based Mapping Platform
Charging station authentication identifiers are publicly accessible via web-based mapping platforms.
CVSS 6.5
CVE-2026-22890 WRITEUP MEDIUM
ev2go.io - Unprotected Credential Exposure via Web-Based Mapping Platform
Charging station authentication identifiers are publicly accessible via web-based mapping platforms.
CVSS 6.5
CVE-2026-23702 WRITEUP HIGH
XWEB Pro <1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by sending malicious input injected into the server username field of the import preconfiguration action in the API V1 route.
CVSS 8.0
CVE-2026-24445 WRITEUP HIGH
ev.energy - Denial of Service via WebSocket Authentication Request Flood
The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by suppressing or mis-routing legitimate charger telemetry, or conduct brute-force attacks to gain unauthorized access.
CVSS 7.5
CVE-2026-24452 WRITEUP HIGH
XWEB Pro <=1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by supplying a crafted template file to the devices route.
CVSS 8.0
CVE-2026-24517 WRITEUP HIGH
XWEB Pro <1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into requests sent to the firmware update route.
CVSS 8.0
CVE-2026-24663 WRITEUP CRITICAL
XWEB Pro <1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an unauthenticated attacker to achieve remote code execution on the system by sending a crafted request to the libraries installation route and injecting malicious input into the request body.
CVSS 9.0
CVE-2026-24689 WRITEUP HIGH
XWEB Pro <1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the devices field of the firmware update apply action.
CVSS 8.0
CVE-2026-24695 WRITEUP HIGH
XWEB Pro <1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into OpenSSL argument fields within requests sent to the utility route, leading to remote code execution.
CVSS 8.0
CVE-2026-24731 WRITEUP CRITICAL
OCPP WebSocket - Privilege Escalation
WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent to the backend. An unauthenticated attacker can connect to the OCPP WebSocket endpoint using a known or discovered charging station identifier, then issue or receive OCPP commands as a legitimate charger. Given that no authentication is required, this can lead to privilege escalation, unauthorized control of charging infrastructure, and corruption of charging network data reported to the backend.
CVSS 9.4
CVE-2026-25037 WRITEUP HIGH
XWEB Pro <1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by configuring a maliciously crafted LCD state which is later processed during system setup, enabling remote code execution.
CVSS 8.0
CVE-2026-25085 WRITEUP HIGH
Copeland XWEB Pro <1.12.1 - Auth Bypass
A vulnerability exists in Copeland XWEB Pro version 1.12.1 and prior, in which an unexpected return value from the authentication routine is later on processed as a legitimate value, resulting in an authentication bypass.
CVSS 8.6
CVE-2026-25105 WRITEUP HIGH
XWEB Pro <1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into parameters of the Modbus command tool in the debug route.
CVSS 8.0
CVE-2026-25109 WRITEUP HIGH
XWEB Pro <1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the devices field when accessing the get setup route, leading to remote code execution.
CVSS 8.0
CVE-2026-25111 WRITEUP HIGH
XWEB Pro <1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into requests sent to the restore route.
CVSS 8.0
CVE-2026-25113 WRITEUP HIGH
swtchenergy.com - Denial of Service via WebSocket API Authentication Request Flood
The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by suppressing or mis-routing legitimate charger telemetry, or conduct brute-force attacks to gain unauthorized access.
CVSS 7.5
CVE-2026-25114 WRITEUP HIGH
cloudcharge.se - Denial of Service via WebSocket Authentication Request Flood
The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by suppressing or mis-routing legitimate charger telemetry, or conduct brute-force attacks to gain unauthorized access.
CVSS 7.5
CVE-2026-25195 WRITEUP HIGH
XWEB Pro <1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by supplying a crafted firmware update file via the firmware update route.
CVSS 8.0
CVE-2026-25196 WRITEUP HIGH
XWEB Pro <1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the Wi-Fi SSID and/or password fields can lead to remote code execution when the configuration is processed.
CVSS 8.0
CVE-2026-25711 WRITEUP HIGH
WebSocket Backend - Session Hijacking
The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent connection displaces the legitimate charging station and receives backend commands intended for that station. This vulnerability may allow unauthorized users to authenticate as other users or enable a malicious actor to cause a denial-of-service condition by overwhelming the backend with valid session requests.
CVSS 7.3
CVE-2026-25721 WRITEUP HIGH
XWEB Pro <1.12.1 - Command Injection
An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the server username and/or password fields of the restore action in the API V1 route.
CVSS 8.0
CVE-2026-25774 WRITEUP MEDIUM
ev.energy - Unprotected Credential Exposure via Web-Based Mapping Platforms
Charging station authentication identifiers are publicly accessible via web-based mapping platforms.
CVSS 6.5
CVE-2026-25778 WRITEUP HIGH
WebSocket Backend - Session Hijacking
The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent connection displaces the legitimate charging station and receives backend commands intended for that station. This vulnerability may allow unauthorized users to authenticate as other users or enable a malicious actor to cause a denial-of-service condition by overwhelming the backend with valid session requests.
CVSS 7.3
CVE-2026-25851 WRITEUP CRITICAL
OCPP WebSocket - Privilege Escalation
WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent to the backend. An unauthenticated attacker can connect to the OCPP WebSocket endpoint using a known or discovered charging station identifier, then issue or receive OCPP commands as a legitimate charger. Given that no authentication is required, this can lead to privilege escalation, unauthorized control of charging infrastructure, and corruption of charging network data reported to the backend.
CVSS 9.4
CVE-2026-25945 WRITEUP HIGH
ev2go.io - Denial of Service via WebSocket Authentication Request Flood
The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by suppressing or mis-routing legitimate charger telemetry, or conduct brute-force attacks to gain unauthorized access.
CVSS 7.5
By Source
All 60,542 Writeup 60,542 Exploitdb 50,033 Nomisec 21,985 Metasploit 3,232 Github 2,998 Vulncheck_xdb 909 Inthewild 514 Gitlab 455 Gitee 415 Patchapalooza 312
By Language
text 31,357 python 6,238 ruby 5,922 c 3,595 perl 2,850 html 2,059 php 1,327 bash 460 java 364 c++ 253 javascript 220 shell 101 go 65 postscript 25 xml 24