[Canvas] Gleg Agora, SCADA, Def, ZDA updates
YG
audit at gleg.net
Mon Jun 13 18:48:14 UTC 2022
Dear colleagues, new modules available for download.
Agora 3.24
- OpenRemote IP Block Bypass [1day]
- Xerte 3.9 Remote Code Execution CVE-2021-44664
- MyBB >= 1.2.0, < 1.8.30 Remote Code Execution CVE-2022-24734
- CVE-2022-0824 Webmin 1.984 Remote Code Exection
DefPack 1.78:
- Cisco Adaptive Security Appliance Software Path Traversal
Vulnerability CVE-2020-3452
- D-Link Router CVE-2019-16920 Remote Code Execution. pub
- ICT Protege GX/WX 2.08 Password Hash Disclosure
- Seowon SLR-120 Router Remote Code Execution (Unauthenticated)
CVE-2020-17456
SCADA 2.25 :
- Siemens A8000 Missing Authentication at File Download. CVE-2022-27480
- OAS CVE-2022-26833
- JUNG Smart Visu Server Path traversal. public
ZDA 1.44 :
- Ansys Scade Suite Version Student 2022 R1 Remote Denial of Service [0Day]
- CVE-2022-29303
- Home Web Server 1.9.1 (build 164) Remote Code Execution. public
- Moodle 3.11.5 Authenticated SQL Injection
- SAP NetWeaver AS JAVA (LM Configuration Wizard) Directory Traversal
Happy pentesting, and peace to all.
Gleg Security team
Follow us on https://twitter.com/GlegExploitPack
More information about the Canvas
mailing list