Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Growatt:
Security Vulnerabilities
CVE-2025-30511
An authenticated attacker can achieve stored XSS by exploiting improper sanitization of the plant name value while adding or editing a plant.
CVSS Score
8.7
EPSS Score
0.003
Published
2025-04-15
CVE-2025-27568
An unauthenticated attacker can get users' emails by knowing usernames. A password reset email will be sent in response to this unsolicited request.
CVSS Score
6.9
EPSS Score
0.004
Published
2025-04-15
CVE-2025-27938
Unauthenticated attackers can obtain restricted information about a user's smart device collections (i.e., "rooms").
CVSS Score
6.9
EPSS Score
0.004
Published
2025-04-15
CVE-2025-27939
An attacker can change registered email addresses of other users and take over arbitrary accounts.
CVSS Score
6.9
EPSS Score
0.008
Published
2025-04-15
CVE-2025-24487
An unauthenticated attacker can infer the existence of usernames in the system by querying an API.
CVSS Score
6.9
EPSS Score
0.004
Published
2025-04-15
Prev
Page 4
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved