ECOA Building Automation System – Hard-coded Credentials SSH Access
ECOA Building Automation System – Hard-coded Credentials SSH Access
ECOA Building Automation System – Cookie Poisoning Authentication Bypass
ECOA Building Automation System – Configuration Download Information Disclosure
ECOA Building Automation System – Directory Traversal Content Disclosure
ECOA Building Automation System – ‘multiple’ Cross-Site Request Forgery (CSRF)
POMS-PHP version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
ECOA building automation systems have hidden backdoor accounts. Many versions are affected.
HEUR.Trojan.Win32.Generic malware suffers from an insecure permissions vulnerability.
ECOA building automation systems suffer from having default weak credentials. Many versions are affected.
ECOA building automation systems suffer from path traversal and arbitrary file upload vulnerabilities. Many versions are affected.