[Canvas] MedPack 1.22 is out
Yuriy Gurkin
audit at gleg.net
Mon Mar 26 07:56:19 UTC 2018
Hi, List,
1.22 ver. of MedPack contains 2 [0-day]`s. List:
- Oracle Hospitality Simphony (MICROS) 2.7 < 2.9 Directory Traversal
[CVE-2018-2636]
- OpenEMR 5.0 SQL injection in vulnerable parameter is "listid".
Authentication is required. [0-Day]
- Laerdal SimMan-3G Arbitrary File Upload [0-Day]
Happy pentesting,
Gleg`s Security team <http://gleg.net/>
Follow us on Twitter: GlegExploitPack <https://twitter.com/GlegExploitPack>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.immunityinc.com/pipermail/canvas/attachments/20180326/675e4899/attachment.html>
More information about the Canvas
mailing list