[Canvas] SCADA+ pack 1.41 , Agora pack 2.41 are out !

Yuriy Gurkin audit at gleg.net
Fri Jan 30 07:53:15 EST 2015


Hi list,
SCADA+ pack 1.41:
3 New 0Days are available in 1.41 version !
 - ScadaBR File Upload and command exec [0-Day]
 -  APT France SensorIP2 security weakness [0-Day]
 -  SCADA SpecView <= v2.5 Build 858 information leak [0-Day]

Agora pack 2.41 contains fresh web vulns for WordPress plugins:
 - Elastic Search 1.1.1 Local file read. CVE-2014-3120
 - Wordpress Ajax Store Locator Arbitrary File Download Vulnerability
 - CIP4 Folder Download Widget Local File Inclusion Vulnerability
 - Wordpress Theme Bretheon Arbitrary File Download Vulnerability

Regards,
Gleg's research team
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.immunityinc.com/pipermail/canvas/attachments/20150130/ddc0a564/attachment.html>


More information about the Canvas mailing list