2 matches found
ProMinent MultiFLEX M10a Controller Session Stealing Vulnerability
The MultiFLEX M10a Controller is a water treatment controller. A session stealing vulnerability exists in ProMinent MultiFLEX M10a Controller, where a user's session can be used for a period of time longer than the last activity, which can be exploited by an attacker to reuse an old session for...
ProMinent MultiFLEX M10a Controller Cross-Site Request Forgery Vulnerability
The MultiFLEX M10a Controller is a water treatment controller. A cross-site request forgery vulnerability exists in the ProMinent MultiFLEX M10a Controller, where the application does not adequately validate requests, making it susceptible to cross-site request forgery. An attacker could execute...