PT-2023-7478 · Unknown · Osprey Pump Controller

Name of the Vulnerable Software and Affected Versions: Osprey Pump Controller version 1.01 Description: The issue exists due to the failure to neutralize special elements in the DataLogView.php, EventsView.php, and AlarmsView.php scripts of the Osprey Pump Controller software. This allows a remot...

PT-2022-25271 · Sauter Controls · Sauter Controls Moduweb

Name of the Vulnerable Software and Affected Versions: SAUTER Controls moduWeb firmware version 2.7.1 Description: The web application does not adequately sanitize request strings of malicious JavaScript, allowing an attacker to execute malicious code in users' browsers and steal sensitive...

PT-2022-1636 · Zabbix +1 · Zabbix +1

Name of the Vulnerable Software and Affected Versions: Zabbix versions 4.0 LTS through 5.0 LTS Description: The issue allows for Remote Code Execution RCE due to authorization errors. Any user with the Zabbix Admin role can run custom shell scripts on the application server in the context of the...

PT-2017-3368 · Zivif · Zivif Pr115-204-P-Rs

Name of the Vulnerable Software and Affected Versions: Zivif PR115-204-P-RS versions V2.3.4.2103 through V4.7.4.2121 Description: The issue is related to unauthenticated, blind remote command injection via CGI scripts used in the web interface. This can be demonstrated by a request to...