283 matches found
Command injection
SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via confmail.php...
Directory traversal
SolarView Compact ver.6.00 allows attackers to access sensitive files via directory traversal...
CVE-2022-29303
SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via confmail.php...
CVE-2022-29303
SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via confmail.php...
CVE-2022-29303
CVE-2022-29303 targets SolarView Compact (CONTEC). Affected: ver.6.00; vulnerability in the web server’s conf_mail.php allows OS command injection due to improper input validation on the send test mail console. Impact per sources: potential remote execution of arbitrary commands with high confide...
CVE-2022-29302
CVE-2022-29302 affects SolarView Compact ver.6.00. The vulnerability is a local file disclosure via the hidden page at /html/Solar_Ftp.php, allowing a remote attacker to read and/or alter arbitrary files on the web server (local file disclosure). The related documents confirm this vulnerability a...
CVE-2022-29302
SolarView Compact ver.6.00 was discovered to contain a local file disclosure via /html/SolarFtp.php...
CVE-2022-29298
Summary (CVE-2022-29298) SolarView Compact ver.6.00 is vulnerable to local file inclusion via directory traversal on the product web server (download page). The vulnerability stems from improper validation of the URL parameter on the download page, potentially allowing an attacker to view or obta...
CVE-2022-29298
SolarView Compact ver.6.00 allows attackers to access sensitive files via directory traversal...
PT-2022-19525 · Unknown · Solarview Compact
Name of the Vulnerable Software and Affected Versions: SolarView Compact version 6.00 Description: The issue allows attackers to access sensitive files via directory traversal. Recommendations: For SolarView Compact version 6.00, consider restricting access to sensitive files as a temporary...
Contec SolarView Compact 安全漏洞
Contec SolarView Compact is an application system from Contec Japan. It provides a photovoltaic power generation measurement system. A security vulnerability exists in Contec SolarView Compact version 6.00, which originates from a local file disclosure vulnerability in /html/SolarFtp.php in...
Contec SolarView Compact 路径遍历漏洞
Contec SolarView Compact is an application system from Contec Japan. It provides photovoltaic power generation measurement system. A security vulnerability exists in Contec SolarView Compact version 6.00, which can be exploited by attackers to obtain sensitive files...
CVE-2022-29303
SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via confmail.php. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...
PT-2022-6990 · Unknown · Solarview Compact
Name of the Vulnerable Software and Affected Versions: SolarView Compact version 6.00 Description: The issue exists due to the failure to neutralize special elements used in an operating system command in the conf mail.php component of the SolarView Compact device. This can allow an attacker to...
PT-2022-25605 · Unknown · Solarview Compact
Name of the Vulnerable Software and Affected Versions: SolarView Compact version 6.00 Description: A command injection issue was discovered via the network test.php file. Recommendations: For SolarView Compact version 6.00, as a temporary workaround, consider restricting access to the network...
Contec SolarView Compact 操作系统命令注入漏洞
Contec SolarView Compact is an application system from Contec Japan. It provides photovoltaic power generation measurement system. Contec SolarView Compact version 6.00 suffers from an operating system command injection vulnerability that originates from a command injection point in the...
Kangtaike SolarView Compact SV-CPT-MC310 Path Traversal Vulnerability (CNVD-2021-56806)
Kangtaike SolarView Compact is an application system from Kangtaike Japan Inc. which provides photovoltaic power measurement systems. Kangtaike SolarView Compact SV-CPT-MC310 suffers from a path traversal vulnerability that could be exploited by attackers to obtain information inside the system,...
Kangtaike SolarView Compact SV-CPT-MC310 Cross-Site Scripting Vulnerability
Kangtaike SolarView Compact is an application system from Kangtaike, Japan. Kangtaike SolarView Compact SV-CPT-MC310 is vulnerable to cross-site scripting, which can be exploited by attackers to inject arbitrary scripts via unspecified vectors...
CVE-2021-20660
Cross-site scripting vulnerability in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to inject an arbitrary script via unspecified vectors...
CVE-2021-20662
Missing authentication for critical function in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to alter the setting information without the access privileges via unspecified vectors...