CVE-2024-55040

MEDIUM

Sensaphone WEB600 Firmware < 1.6.5.H - Cross-Site Scripting via @.xml GET Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-55040. PoCs published by tcbutler320.

AI-analyzed exploit summary This repository documents CVE-2024-55040, a stored XSS vulnerability in Sensaphone Web600 firmware v1.6.5.H. The vulnerability allows authenticated attackers to inject arbitrary JavaScript payloads via crafted GET requests to /@.xml, affecting multiple fields in Setup, Profiles, and Zones.

Description

Cross Site Scripting vulnerability in Sensaphone WEB600 Monitoring System v.1.6.5.H and before allows a remote attacker to execute arbitrary code via a crafted GET requests to /@.xml, placing payloads in the g7200, g7300, g4601, and g1F02 parameters.

Exploits (1)

nomisec WRITEUP 1 stars
by tcbutler320 · poc
https://github.com/tcbutler320/CVE-2024-55040-Sensaphone-XSS

This repository documents CVE-2024-55040, a stored XSS vulnerability in Sensaphone Web600 firmware v1.6.5.H. The vulnerability allows authenticated attackers to inject arbitrary JavaScript payloads via crafted GET requests to /@.xml, affecting multiple fields in Setup, Profiles, and Zones.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Sensaphone Web600 Monitoring System v1.6.5.H
Auth required
Prerequisites: Authenticated access to the Sensaphone Web600 dashboard
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 6.1
EPSS 0.0069
EPSS Percentile 47.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-79
Status published
Products (1)
sensaphone/web600_firmware < 1.6.5.H
Published Jul 21, 2025
Tracked Since Feb 18, 2026