Scanguard versions through 2019-11-12 on Windows has insecure permissions for the installation directory, leading to privilege escalation via a trojan horse executable file.
>> CATEGORY: exploit
Siemens Desigo PX version 6.00 remote denial of service exploit.
An issue was discovered in CMS Made Simple version 2.2.8. In the module DesignManager (in the files action.admin_bulk_css.php and action.admin_bulk_template.php), with an unprivileged user with Designer permission, it is possible…
Linear eMerge E3 versions 1.00-06 and below suffer from file disclosure and traversal vulnerabilities.
Linear eMerge E3 versions 1.00-06 and below suffer from a reflective cross site scripting vulnerability.
Linear eMerge E3 versions 1.00-06 and below unauthenticated command injection remote root exploit that leverages card_scan.php.
Linear eMerge E3 versions 1.00-06 and below arbitrary file upload remote root code execution exploit.
Linear eMerge E3 versions 1.00-06 and below unauthenticated command injection remote root exploit that leverages card_scan_decoder.php.
Computrols CBAS-Web versions 19.0.0 and below suffer from a reflective cross site scripting vulnerability.
Optergy BMS versions 2.0.3a and below unauthenticated remote root exploit. Related CVE number: CVE-2019-7276.