77 matches found
EUVD-2026-33267
ITS Intelligent SCADA System developed by ITP Technology has a Stored Cross-Site Scripting vulnerability, allowing privileged remote attackers to inject persistent JavaScript codes that are executed in users' browsers upon page load...
CVE-2026-10057 ITP Technology|ITS Intelligent SCADA System - Stored Cross-Site Scripting
ITS Intelligent SCADA System developed by ITP Technology has a Stored Cross-Site Scripting vulnerability, allowing privileged remote attackers to inject persistent JavaScript codes that are executed in users' browsers upon page load...
Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs
Iran-affiliated cyber actors are targeting internet-facing operational technology OT devices across critical infrastructures in the U.S., including programmable logic controllers PLCs, cybersecurity and intelligence agencies warned Tuesday. "These attacks have led to diminished PLC functionality,...
PT-2025-48405
opening the vault on a 3-year-old vulnerability: CVE-2022-35420 back in 2022, I got bored and decided to hunt for a zero-day instead of writing the red-team report. I found an unauthenticated admin takeover in a SCADA system used to control real-world physical machinery. I waited until now to...
EUVD-2025-25186
Malicious code in bioql PyPI...
Copeland E3 Supervisory Control 安全漏洞
Copeland E3 Supervisory Control is an industrial equipment control system from Copeland, USA. A security vulnerability exists in Copeland E3 Supervisory Control versions prior to 2.31F01, which stems from mishandling of the floor plan feature and could result in uploading a specially crafted file...
Copeland E3 Supervisory Control 安全漏洞
Copeland E3 Supervisory Control is an industrial equipment control system from Copeland, USA. A security vulnerability exists in Copeland E3 Supervisory Control versions prior to 2.31F01, which stems from improper handling of the floor plan feature and could lead to a stored cross-site scripting...
Copeland E3 Supervisory Control 安全漏洞
Copeland E3 Supervisory Control is an industrial equipment control system from Copeland, USA. A security vulnerability exists in Copeland E3 Supervisory Control versions prior to 2.31F01, which stems from a lack of input validation for MGW service API calls, which could cause the application...
Copeland E3 Supervisory Control 安全漏洞
Copeland E3 Supervisory Control is an industrial equipment control system from Copeland, USA. A security vulnerability exists in Copeland E3 Supervisory Control versions prior to 2.31F01, which stems from a hidden API call that could result in enabling remote access to the underlying operating...
Copeland E3 Supervisory Control 安全漏洞
Copeland E3 Supervisory Control is an industrial equipment control system from Copeland Corporation. A security vulnerability exists in Copeland E3 Supervisory Control versions prior to 2.31F01, which stems from an improper root password generation mechanism that could lead to the generation of a...
Copeland E3 Supervisory Control 安全漏洞
Copeland E3 Supervisory Control is an industrial equipment control system from Copeland, USA. A security vulnerability exists in Copeland E3 Supervisory Control versions prior to 2.31F01, which stems from an unsigned firmware upgrade package that could lead to the installation of malicious firmwa...
Copeland E3 Supervisory Control 安全漏洞
Copeland E3 Supervisory Control is an industrial equipment control system from Copeland, USA. A security vulnerability exists in Copeland E3 Supervisory Control versions prior to 2.31F01, which stems from an improper call to the RCI service API and could lead to obtaining username and password...
Copeland E3 Supervisory Control 安全漏洞
Copeland E3 Supervisory Control is an industrial equipment control system from Copeland, USA. A security vulnerability exists in Copeland E3 Supervisory Control versions prior to 2.31F01 that stems from a predictable default user ONEDAY password...
Copeland E3 Supervisory Control 安全漏洞
Copeland E3 Supervisory Control is an industrial equipment control system from Copeland, USA. A security vulnerability exists in Copeland E3 Supervisory Control versions prior to 2.31F01, which stems from client-side hash authentication and could lead to authentication via password hashing...
The vulnerability of the “Tekon” SCADA system, which exists due to the lack of measures to neutralize specific elements, allows for the execution of arbitrary codes.
The vulnerability of the “Tekon” SCADA system exists due to the lack of measures taken to neutralize its special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary codes...
The vulnerability of the “Tekon” SCADA system, related to errors in access control, allows a intruder to gain unauthorized access to protected information.
The vulnerability of the “Tekon” SCADA system, related to access control errors. Exploiting this vulnerability could allow an intruder operating remotely to gain unauthorized access to protected information...
The vulnerability of the OPC Server implementation in MIR and SCADA systems, related to the transmission of data in an open manner, allows attackers to disclose protected information.
The vulnerability of the OPC Server implementation and the MIIR SCADA system is related to the transmission of data in an open manner. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...
The vulnerability of the SCADA system MasterSCADA, related to deficiencies in password protection mechanisms, allows unauthorized access to the project by intruders.
The vulnerability of the SCADA system MasterSCADA is related to deficiencies in the password protection mechanism. Exploiting this vulnerability can allow an intruder to gain unauthorized access to the project...
The vulnerability of the SCADA system “ENTEK,” related to the use of cryptographic algorithms containing defects, allows a intruder to gain unauthorized access to protected information.
The vulnerability of the SCADA system “ENTEK” is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...
Triangle MicroWorks SCADA Data Gateway 安全漏洞
Triangle MicroWorks SCADA Data Gateway is a SCADA data gateway product from Triangle MicroWorks, Inc. A security vulnerability exists in Triangle MicroWorks SCADA Data Gateway that originates from a specific flaw in workspace files that allows remote attackers to create arbitrary files...