[Canvas] Gleg updates

audit at gleg.net audit at gleg.net
Fri May 29 19:01:44 UTC 2020

Hi list, new updates available for download:

DefPack 1.55:
  - HiSilicon hi3520d and similar system Directory Traversal.public
  - Netlink GPON Router 1.0.11 Remote Code Execution. public
  - Revotech I6032B-P POE 1920x1080P 2.0MP Outdoor Camera Remote  
Configuration Disclosure. public
  - Zivif Web Cameras Remote Command Execution. public

SCADA  2.02:
  - UCanCode Visualization Suite 2020 ActiveX File Overwrite  
Vulnerability. [1Day]
  - iniNet SpiderControl SCADA Editor Denial of Service. [1Day]
  - Modbus SCADA ver 2.4.1 Directory Traversal Vulnerability. [1Day]

Agora 3.01:
  - LabCollector 6.0 Arbitrary File Upload. [1Day]
  - LabCollector 6.0 Local File Inclusion. [1Day]
  - Sysaid 20.1.11 b26 - Directory Traversal. [1Day]
  - Quick N Easy Web Server 3.3.8 - Denial of Service. public

MedPAck 1.35:
- ViscomSoft Image Viewer SDK ActiveX Remote File Create Vulnerability. 1Day

four 0days for the software: OpenSCADA, SChoolERP, Shopping_website

Good health and happy pentesting,
-Gleg's research team

More information about the Canvas mailing list