Lucene search
K

7 matches found

Packet Storm
Packet Storm
added 2026/01/30 12:0 a.m.150 views

📄 MyPRO Manager 1.2 Command Injection

MyPRO Manager versions 1.2 and below suffer from an unauthenticated command injection vulnerability. ============================================================================================================================================= | Title : MyPRO Manager 1.2 php code injection | |...

10CVSS7.4AI score0.64168EPSS
Exploits4
Metasploit
Metasploit
added 2025/02/11 6:55 p.m.304 views

mySCADA myPRO Manager Unauthenticated Command Injection (CVE-2024-47407)

Unauthenticated Command Injection in MyPRO Manager use exploit/windows/scada/mypromgrcmd msf exploitmypromgrcmd show targets ...targets... msf exploitmypromgrcmd set TARGET msf exploitmypromgrcmd show options ...show and set options... msf exploitmypromgrcmd exploit class MetasploitModule 'mySCAD...

10CVSS8.9AI score0.64168EPSS
Exploits4
Packet Storm
Packet Storm
added 2025/02/11 12:0 a.m.506 views

MySCADA MyPRO Manager 1.2 Command Injection

MySCADA MyPRO Manager versions 1.2 and below suffer from an unauthenticated command injection vulnerability. The vulnerability can be exploited by a remote attacker to inject arbitrary operating system commands which will get executed in the context of the myscada9 administrative user that is...

10CVSS9.9AI score0.64168EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2025/01/28 12:0 a.m.12 views

mySCADA PRO Manager Command Injection (CVE-2024-47407)

Binary data myscadaprocmdinjection.nbin...

10CVSS9.6AI score0.64168EPSS
Exploits4References2
Cvelist
Cvelist
added 2024/11/22 10:15 p.m.19 views

CVE-2024-47407 mySCADA myPRO OS Command Injection

A parameter within a command does not properly validate input within myPRO Manager which could be exploited by an unauthenticated remote attacker to inject arbitrary operating system commands...

10CVSS0.64168EPSS
Exploits4References1
CVE
CVE
added 2024/11/22 10:15 p.m.108 views

CVE-2024-47407

CVE-2024-47407 concerns mySCADA myPRO Manager, where a parameter in a command fails input validation, enabling an unauthenticated remote attacker to inject arbitrary OS commands. Connected sources confirm this is an unauthenticated command-injection vulnerability affecting MyPRO Manager versions ...

10CVSS9.7AI score0.64168EPSS
Exploits4References1
Circl
Circl
added 2024/11/21 11:0 a.m.9 views

CVE-2024-47407

creationtimestamp| type| source ---|---|--- 2024-11-21 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-326-07 2025-02-11 08:32:04+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/scada/mypromgrcmd.rb 2025-02-11...

10CVSS8.8AI score0.64168EPSS
Exploits4References3
Rows per page
Query Builder