[Canvas] SCADA+ 1.49, Agora 2.48 are out

Yuriy Gurkin audit at gleg.net
Wed Nov 4 10:03:05 EST 2015

Dear colleagues,
SCADA+ 1.49 contains two new 0day vulns:
 - Reliance 4 Control Server Denial Of Service Vulnerability [0day]
 - Lanmisoft Home Automation Information Disclosure [0day]

Agora contains two excellent modules for defensive software along with two
fresh web apps vulns:
- WordPress All In One WP Security & Firewall SQL Injection Vulnerability
- Wordpress Aspose-Cloud-eBook-Generator Plugin Arbitrary File Download
- exploit for multiple vulnerabilities in Solarwinds Firewall Security
Manager. with RCE vector
- Command injection in Symantec Web Gateway

Best regards,
Gleg's development team
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.immunityinc.com/pipermail/canvas/attachments/20151104/a2a4f4b5/attachment.html>

More information about the Canvas mailing list