CVE-2024-46506 – NetAlertX Unauthenticated Command Injection Vulnerability

May 13, 2025

CVE ID : CVE-2024-46506

Published : May 13, 2025, 4:15 p.m. | 14 minutes ago

Description : NetAlertX 23.01.14 through 24.x before 24.10.12 allows unauthenticated command injection via settings update because function=savesettings lacks an authentication requirement, as exploited in the wild in May 2025. This is related to settings.php and util.php.

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-48766 – NetAlertX HTTP File Disclosure

Next Article CVE-2025-4660 – “SecureConnector Windows Agent Named Pipe Remote Code Execution Vulnerability”

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

This $4 Steam Deck game includes the most-played classics from my childhood — and it will save you paper

Microsoft shares rare look at radical Windows 11 Start menu designs it explored before settling on the least interesting one of the bunch

NVIDIA’s new GPU driver adds DOOM: The Dark Ages support and improves DLSS in Microsoft Flight Simulator 2024

How to install and use Ollama to run AI LLMs on your Windows 11 PC

Community News: Latest PECL Releases (05.13.2025)

Community News: Latest PECL Releases (05.13.2025)

How We Use Epic Branches. Without Breaking Our Flow.

I think the ergonomics of generators is growing on me.

This $4 Steam Deck game includes the most-played classics from my childhood — and it will save you paper

This $4 Steam Deck game includes the most-played classics from my childhood — and it will save you paper

Microsoft shares rare look at radical Windows 11 Start menu designs it explored before settling on the least interesting one of the bunch

NVIDIA’s new GPU driver adds DOOM: The Dark Ages support and improves DLSS in Microsoft Flight Simulator 2024

CVE-2024-46506 – NetAlertX Unauthenticated Command Injection Vulnerability

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-3744 – Nomad Sentinel Policy Bypass

One Dollar Inbox

Brisa 0.2.12 – Near 0.3 🔜

Optimizing Protein Design with Reinforcement Learning-Enhanced pLMs: Introducing DPO_pLM for Efficient and Targeted Sequence Generation

This AI Paper from Columbia University Introduces Manify: A Python Library for Non-Euclidean Representation Learning

Running Large Language Models (LLMs) Locally with LM Studio

Stanford Researchers Introduce OctoTools: A Training-Free Open-Source Agentic AI Framework Designed to Tackle Complex Reasoning Across Diverse Domains

I changed these 6 TV settings to drastically speed up the performance

IPVanish Review: Exploring the VPNâ€™s New Features

CVE-2024-46506 – NetAlertX Unauthenticated Command Injection Vulnerability

Related Posts