Lucene search
K

6 matches found

Packet Storm
Packet Storm
added 2023/05/24 12:0 a.m.357 views

PnPSCADA 2.x SQL Injection

Exploit Title: PnPSCADA v2.x - Unauthenticated PostgreSQL Injection Date: 15/5/2023 Exploit Author: Momen Eldawakhly Cyber Guy at Samurai Digital Security Ltd Vendor Homepage: https://pnpscada.com/ Version: PnPSCADA cross platforms: v2.x Tested on: Unix CVE : CVE-2023-1934 Proof-of-Concept:...

9.8CVSS7.1AI score0.08079EPSS
Exploits3
0day.today
0day.today
added 2023/05/23 12:0 a.m.222 views

PnPSCADA v2.x - Unauthenticated PostgreSQL Injection Vulnerability

Exploit Title: PnPSCADA v2.x - Unauthenticated PostgreSQL Injection Exploit Author: Momen Eldawakhly Cyber Guy at Samurai Digital Security Ltd Vendor Homepage: https://pnpscada.com/ Version: PnPSCADA cross platforms: v2.x Tested on: Unix CVE : CVE-2023-1934 Proof-of-Concept:...

5CVSS7.1AI score0.08079EPSS
Exploits3
Exploit DB
Exploit DB
added 2023/05/23 12:0 a.m.258 views

PnPSCADA v2.x - Unauthenticated PostgreSQL Injection

Exploit Title: PnPSCADA v2.x - Unauthenticated PostgreSQL Injection Date: 15/5/2023 Exploit Author: Momen Eldawakhly Cyber Guy at Samurai Digital Security Ltd Vendor Homepage: https://pnpscada.com/ Version: PnPSCADA cross platforms: v2.x Tested on: Unix CVE : CVE-2023-1934 Proof-of-Concept:...

9.8CVSS7.8AI score0.08079EPSS
Exploits3
ICS
ICS
added 2023/05/12 6:9 p.m.69 views

SDG PnPSCADA

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: SDG Technologies Equipment: PnPSCADA Vulnerabilities: SQL Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to interact with the database and retrieve...

9.8CVSS9.1AI score0.08079EPSS
Exploits3References5
Vulnrichment
Vulnrichment
added 2023/05/12 1:18 p.m.8 views

CVE-2023-1934

The PnPSCADA system, a product of SDG Technologies CC, is afflicted by a critical unauthenticated error-based PostgreSQL Injection vulnerability. Present within the hitlogcsv.jsp endpoint, this security flaw permits unauthenticated attackers to engage with the underlying database seamlessly and...

9.8CVSS7.2AI score0.08079EPSS
Exploits3References2
CVE
CVE
added 2023/05/12 1:18 p.m.77 views

CVE-2023-1934

CVE-2023-1934 concerns SDG Technologies SDG PnPSCADA. The vulnerability is an unauthenticated, error-based PostgreSQL injection affecting the hitlogcsv.jsp endpoint, allowing remote attackers to read/modify data in the underlying database. Reported impact includes access to ICS/OT data and other ...

9.8CVSS8.2AI score0.08079EPSS
Exploits3References2Affected Software1
Rows per page
Query Builder