11 matches found
CVE-2025-23411
mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...
CVE-2025-25067
mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...
CVE-2025-24865
The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password...
CVE-2025-25067
mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...
CVE-2025-23411
mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...
CVE-2025-25067 mySCADA myPRO Manager OS Command Injection
mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...
CVE-2025-25067 mySCADA myPRO Manager OS Command Injection
mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...
CVE-2025-22896
CVE-2025-22896 affects mySCADA myPRO Manager, where credentials are stored in cleartext. The vulnerability enables an attacker to obtain sensitive information via the affected component, with network access and no required user interaction per CVSS vectors in the source records. Connected documen...
CVE-2025-24865 mySCADA myPRO Manager Missing Authentication for Critical Function
The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password...
PT-2024-31583 · Myscada · Myscada Mypro Manager
Name of the Vulnerable Software and Affected Versions: mySCADA myPRO Manager affected versions not specified Description: The web application uses a weak authentication mechanism to verify that a request is coming from an authenticated and authorized resource. Recommendations: At the moment, ther...
PT-2024-33891 · Myscada · Myscada Mypro Manager
Name of the Vulnerable Software and Affected Versions: mySCADA myPRO Manager affected versions not specified Description: The issue arises from insufficient verification of the user-controlled filename parameter by the back-end, allowing an attacker to perform a path traversal attack. This enable...