>> CATEGORY: Security

TemaTres 3.0 – ‘value’ Persistent Cross-site Scripting

ASUS HM Com Service 1.00.31 – ‘asHMComSvc’ Unquoted Service Path

Lexmark Services Monitor 2.27.4.0.39 – Directory Traversal

Crystal Live HTTP Server 6.01 – Directory Traversal

Open Proficy HMI-SCADA 5.0.0.25920 – ‘Password’ Denial of Service (PoC)

NCP_Secure_Entry_Client 9.2 – Unquoted Service Paths

MobileGo 8.5.0 – Insecure File Permissions

Centova Cast 3.2.11 – Arbitrary File Download

TemaTres 3.0 – Cross-Site Request Forgery (Add Admin)

Foscam Video Management System 1.1.4.9 – ‘Username’ Denial of Service (PoC)