Vendor

Taiko

3 briefs RSS

Taiko AG1000-01A SMS Alert Gateway Stored XSS (CVE-2026-9144)

Taiko AG1000-01A SMS Alert Gateway Rev 7.3 and Rev 8 is vulnerable to stored cross-site scripting (CVE-2026-9144) in the web configuration interface, allowing authenticated attackers to execute persistent JavaScript by fragmenting malicious payloads across multiple administrative form fields for persistent code execution.

AG1000-01A SMS Alert Gateway xss stored_xss CVE-2026-9144 web_application

2r 1t 1c 47m ago

critical advisory

Taiko AG1000-01A SMS Alert Gateway Authentication Bypass (CVE-2026-9141)

2 rules 1 TTP 1 CVE

Taiko AG1000-01A SMS Alert Gateway Rev 7.3 and Rev 8 contains an authentication bypass vulnerability (CVE-2026-9141) in the embedded web configuration interface, allowing unauthenticated attackers to access internal application pages, modify alarm routing, and disrupt monitoring and control functions.

AG1000-01A SMS Alert Gateway authentication-bypass web-application critical

2r 1t 1c 47m ago

critical threat

Taiko AG1000-01A SMS Alert Gateway Hardcoded Credentials Vulnerability (CVE-2026-9139)

2 rules 1 TTP 1 CVE

Taiko AG1000-01A SMS Alert Gateway Rev 7.3 and Rev 8 contains a hard-coded credential vulnerability (CVE-2026-9139) in the embedded web configuration interface, allowing unauthenticated attackers with network access to recover administrative credentials directly from client-side JavaScript and gain full administrative access to the device.

AG1000-01A SMS Alert Gateway cve hardcoded-credentials network-device

2r 1t 1c 47m ago