[Canvas] SCADA+ pack 1.85 is out

Yuriy Gurkin audit at gleg.net
Wed Dec 26 17:11:34 UTC 2018


Hi, List,

1.85 ver. of SCADA+ contains 4 modules. List:

- IGSS Arbitrary File Disclosure. [1Day]
- Advantech webaccess exec -  remote users can upload and execute malicious
.aspx file. [1Day]
- CyBroHttpServer Directory Traversal. [1Day]
- DataRate v4.1 fake project file allows for Code Execution. [1Day]

Happy pentesting,
Gleg`s Security team <http://gleg.net/>
Follow us on Twitter: GlegExploitPack <https://twitter.com/GlegExploitPack>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.immunityinc.com/pipermail/canvas/attachments/20181226/49209296/attachment.html>


More information about the Canvas mailing list