268 matches found
Rockwell Scada System 27.011 Cross Site Scripting
Exploit Title: Rockwell Scada System - Cross-Site Scripting Date: 2018-05-16 Exploit Author: t4rkd3vilz Vendor Homepage: https://rockwellautomation.com/ Software Link: http://compatibility.rockwellautomation.com/Pages/MultiProductDownload.aspx?famID=4 Version: 1769-L16ER-BB1B, Version 27.011 and...
Rockwell Scada System 27.011 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Rockwell Scada System - Cross-Site Scripting Exploit Author: t4rkd3vilz Vendor Homepage: https://rockwellautomation.com/ Software Link: http://compatibility.rockwellautomation.com/Pages/MultiProductDownload.aspx?famID=4 Version:...
Rockwell Scada System 27.011 - Cross-Site Scripting
Exploit Title: Rockwell Scada System - Cross-Site Scripting Date: 2018-05-16 Exploit Author: t4rkd3vilz Vendor Homepage: https://rockwellautomation.com/ Software Link: http://compatibility.rockwellautomation.com/Pages/MultiProductDownload.aspx?famID=4 Version: 1769-L16ER-BB1B, Version 27.011 and...
Rockwell LOGIX 5324 ER Cross Site Scripting
Vulnerable Products: Rockwell SCADA/ICS System Affected Versions: Rockwell LOGIX 5324 ER Vulnerability Typus: Cross Site Scripting & HTML Adegnjection Description: SCADA systems are crucial for industrial organizations since they help to maintain efficiency, process data for smarter decisions, an...
Water Utility Infected by Cryptocurrency Mining Software
A water utility in Europe has been infected by cryptocurrency mining software. This is a relatively new attack: hackers compromise computers and force them to mine cryptocurrency for them. This is the first time I've seen it infect SCADA systems, though. It seems that this mining software is...
CVE-2018-5443
A SQL Injection issue was discovered in Advantech WebAccess/SCADA versions prior to V8.220170817. WebAccess/SCADA does not properly sanitize its inputs for SQL commands...
Trihedral Engineering Limited VTScada DLL Hijacking Vulnerability
VTScada is a SCADA system from Trihedral Engineering, Canada, based on a Windows platform with a Web interface option. Trihedral Engineering Limited VTScada suffers from a DLL hijacking vulnerability that could allow an attacker to cause the program to execute a specially crafted malicious dll fi...
OPC UA Message Request Detection (SCADA)
Binary data 700148.prm...
OPC UA Server Detection (SCADA)
Binary data 700142.prm...
CVE-2017-6033
A DLL Hijacking issue was discovered in Schneider Electric Interactive Graphical SCADA System IGSS Software, Version 12 and previous versions. The software will execute a malicious file if it is named the same as a legitimate file and placed in a location that is earlier in the search path...
Hackers Suspected of Causing Second Power Outage in Ukraine
The same group of hackers that caused the power outage across several regions in Ukraine last Christmas holidays might have once again shut down power supply in northern Ukraine during the weekend. According to Ukrainian energy provider Ukrenergo, a cyber attack on Kyiv's power grid may have caus...
GE Proficy HMI SCADA CIMPLICITY Local Privilege Vulnerability
GE Proficy HMI SCADA CIMPLICITY is a client/server based HMI/SCADA solution. A security vulnerability exists in GE Proficy HMI SCADA CIMPLICITY that allows a local attacker to exploit the vulnerability to elevate privileges...
和达SCADA系统 /NB/frmMain.aspx文件敏感信息泄露漏洞
No description provided by source...
贝欧燃气SCADA监控系统 /WitWaterNet/IndexService.asmx/Login SQL注入漏洞
No description provided by source...
Meteocontrol WEB'log Arbitrary Command Execution Vulnerability
Meteocontrol WEB'log is a web-based SCADA system that provides energy and power configuration management functions using different connected devices. A security vulnerability exists in the access command shell-like functionality of several Meteocontrol WEB'log products, which could be exploited b...
7-Technologies IGSS < 9.0.0.11143 ODBC Invalid Structure RCE
Binary data scadaappigssodbcicsa-11-018-02.nbin...
Advantech WebAccess stack buffer overflow vulnerability (CNVD-2016-00434)
WebAccess HMI/SCADA software provides remote control and management, allowing users to easily view and configure automation devices in facility management systems, power stations and building automation systems. Multiple stack buffer overflow vulnerabilities exist in Advantech WebAccess versions...
Ecava IntegraXor Vulnerabilities
OVERVIEW Independent security researcher Marcus Richerson and Steven Seeley of Source Incite, working with Trend Micro’s Zero Day Initiative, independently identified vulnerabilities in Ecava’s IntegraXor application. Ecava has produced a new version to mitigate these vulnerabilities. Marcus...
Hackers Cause World's First Power Outage with Malware
SCADA system has always been an interesting target for cyber crooks, given the success of Stuxnet malware that was developed by the US and Israeli together to sabotage the Iranian nuclear facilities a few years ago, and "Havex" that previously targeted organizations in the energy sector. Now once...
Motorola Solutions MOSCAD SCADA IP Gateway Arbitrary File Download Vulnerability
Motorola Solutions MOSCAD SCADA IP Gateway is a Web-based SCADA system that provides management functions from Motorola Motorola Solutions. An arbitrary file download vulnerability exists in Motorola Solutions MOSCAD SCADA IP Gateway. A remote attacker could use this vulnerability to read arbitra...