Homey
N/A
Developer
N/A
Latest version
N/A
Downloads
N/A
Last updated
Vulnerability history
4 present
4 fixed
5 Mitigation rules
- Reflected Cross Site Scripting (XSS) vulnerability<= 2.4.5Jun 26, 2025
- SQL Injection Vulnerability<= 2.4.5Jun 24, 2025
- Missing Authorization to Authenticated (Subscriber+) Arbitrary Reservation & Post Deletion vulnerability<= 2.4.4May 1, 2025
- Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary User Deletion vulnerability<= 2.4.4May 1, 2025
- Cross-Site Request Forgery to User Verification vulnerability<= 2.4.3Mar 6, 2025
- Limited Authentication Bypass due to Missing Empty Value Check vulnerability<= 2.4.3Mar 6, 2025
- Unauthenticated Privilege Escalation in homey_save_profile vulnerability<= 2.4.2Mar 4, 2025
- Privilege Escalation vulnerability<= 2.4.1Jan 13, 2025