Breakpoint

Public CVE I've been involved with

The Common Vulnerabilities and Exposures system is the most common way to list known vulnerabilities in largely used products. The goal is to make it easy for security and developpers to track specific vulnerabilities and associated vulnerable software versions. Not all vulnerabilities get assigned CVEs, but most should have one.

Everything presented here is public, but some are prone to be forgotten so I thought I'd provide them with a new home.

• CVE-2019-12547 Reflected XSS in OpenTrust MFT

• CVE-2019-12307 EZCast Pro II Multiple Cross-Site Request Forgery

• CVE-2019-12306 EZCast Pro II Unauthenticated Settings Modification

• CVE-2019-12305 EZCast Pro II Information Disclosure of Admin Password

• CVE-2019-12304 EZCast Pro II Arbitrary File Upload leading to Unauthenticated RCE

• CVE-2026-30711 Reflected XSS in GRR≤4.4.2

• CVE-2026-30712 SQLi in GRR≤4.4.2 via editentree

• CVE-2026-30713 SQLi in GRR≤4.4.2 via vuereservation.php

• CVE-2026-30714 SQLi in GRR≤4.4.2 via session.inc.php

• CVE-2026-30715 Reflected XSS in GRR≤4.4.2 via editentreetrt.php

• CVE-2026-30716 Reflected XSS in GRR≤4.4.2 via maj.php

• CVE-2026-30717 Open redirect in GRR≤4.4.2

• CVE-2026-30718 Session fixation in GRR≤4.4.2

• CVE-2026-30719 SQLi in GRR≤4.4.2 via report.php