Lucene search
K

52 matches found

Nuclei
Nuclei
added 2026/06/21 3:3 a.m.98 views

Optergy Proton/Enterprise - Unauthenticated RCE via Backdoor Console

Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console. id: CVE-2019-7276 info: name: Optergy Proton/Enterprise - Unauthenticated RCE via Backdoor Console author: daffainfo severity: critical description: | Optergy Proton/Enterprise devices allow Remote Root Cod...

10CVSS7.4AI score0.93384EPSS
Exploits7References4
RedhatCVE
RedhatCVE
added 2026/01/07 9:37 a.m.8 views

CVE-2019-7277

Optergy Proton/Enterprise devices allow Unauthenticated Internal Network Information Disclosure...

5.3CVSS7.1AI score0.0195EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:5 a.m.8 views

CVE-2019-7273

Optergy Proton/Enterprise devices allow Cross-Site Request Forgery CSRF...

8.8CVSS7AI score0.04476EPSS
Exploits4References1
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.215 views

Optergy Proton And Enterprise BMS 2.0.3a Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Optergy Proton and Enterprise BMS Command Injection using a backdoor', 'Description' = %q This module exploits an undocumented backdoor...

10CVSS9.4AI score0.93384EPSS
Exploits7
0day.today
0day.today
added 2023/03/28 12:0 a.m.361 views

Optergy Proton And Enterprise BMS 2.0.3a Command Injection Exploit

This Metasploit module exploits an undocumented backdoor vulnerability in the Optergy Proton and Enterprise Building Management System BMS applications. Versions 2.0.3a and below are vulnerable. Attackers can exploit this issue by directly navigating to an undocumented backdoor script called...

9.8CVSS9.6AI score0.93384EPSS
Exploits7
VulnCheck KEV
VulnCheck KEV
added 2020/10/14 12:0 a.m.4 views

VulnCheck KEV: CVE-2019-7276

Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console...

10CVSS7.3AI score0.93384EPSS
Exploits7References1
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.80 views

Optergy 2.3.0a - Cross-Site Request Forgery (Add Admin)

Optergy 2.3.0a - Cross-Site Request Forgery Add Admin Title: Optergy 2.3.0a - Cross-Site Request Forgery Add Admin Author: LiquidWorm Date: 2019-11-05 Vendor: https://optergy.com/ Product web page: https://optergy.com/products/ Affected version: history.pushState'', '', '/' input type="hidden"...

6.8CVSS0.8AI score0.04476EPSS
Exploits4
Packet Storm
Packet Storm
added 2019/11/12 12:0 a.m.135 views

Optergy Proton/Enterprise BMS 2.3.0a Open Redirect

Open Redirect in Optergy Proton/Enterprise BMS Firmware version: =2.3.0a CVE: CVE-2019-7275 Advisory: https://applied-risk.com/resources/ar-2019-008 Paper: https://applied-risk.com/resources/i-own-your-building-management-system by Gjoko 'LiquidWorm' Krstic GET /updating.jsp?url=https://segfault....

5.8CVSS6.7AI score0.09087EPSS
Exploits1
Packet Storm
Packet Storm
added 2019/11/12 12:0 a.m.241 views

Optergy Proton/Enterprise BMS 2.0.3a Cross Site Request Forgery

Optergy Proton/Enterprise BMS CSRF Add Admin Affected version: history.pushState'', '', '/' input type="hidden" name="user.visibleAlarms" value...

6.8CVSS0.6AI score0.04476EPSS
Exploits4
NVD
NVD
added 2019/07/01 9:15 p.m.22 views

CVE-2019-7273

Optergy Proton/Enterprise devices allow Cross-Site Request Forgery CSRF...

8.8CVSS9.2AI score0.04476EPSS
Exploits4References4
OSV
OSV
added 2019/07/01 9:15 p.m.4 views

CVE-2019-7274

Optergy Proton/Enterprise devices allow Authenticated File Upload with Code Execution as root...

9.8CVSS7.4AI score0.29043EPSS
Exploits5References4
OSV
OSV
added 2019/07/01 9:15 p.m.4 views

CVE-2019-7273

Optergy Proton/Enterprise devices allow Cross-Site Request Forgery CSRF...

8.8CVSS7.3AI score0.04476EPSS
Exploits4References4
OSV
OSV
added 2019/07/01 9:15 p.m.3 views

CVE-2019-7272

Optergy Proton/Enterprise devices allow Username Disclosure...

5.3CVSS6.3AI score0.10469EPSS
Exploits5References4
Prion
Prion
added 2019/07/01 9:15 p.m.10 views

Cross site request forgery (csrf)

Optergy Proton/Enterprise devices allow Cross-Site Request Forgery CSRF...

6.8CVSS8.7AI score0.04476EPSS
Exploits4References4Affected Software2
Prion
Prion
added 2019/07/01 9:15 p.m.17 views

Design/Logic Flaw

Optergy Proton/Enterprise devices allow Authenticated File Upload with Code Execution as root...

10CVSS9.6AI score0.29043EPSS
Exploits5References4Affected Software2
Prion
Prion
added 2019/07/01 9:15 p.m.20 views

Design/Logic Flaw

Optergy Proton/Enterprise devices allow Username Disclosure...

5CVSS5.7AI score0.10469EPSS
Exploits5References4Affected Software2
OSV
OSV
added 2019/07/01 8:15 p.m.4 views

CVE-2019-7277

Optergy Proton/Enterprise devices allow Unauthenticated Internal Network Information Disclosure...

5.3CVSS6.3AI score0.0195EPSS
Exploits0References3
OSV
OSV
added 2019/07/01 8:15 p.m.6 views

CVE-2019-7276

Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console...

9.8CVSS7.4AI score0.93384EPSS
Exploits7References4
NVD
NVD
added 2019/07/01 8:15 p.m.34 views

CVE-2019-7276

Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console...

10CVSS9.7AI score0.93384EPSS
Exploits7References4
NVD
NVD
added 2019/07/01 8:15 p.m.19 views

CVE-2019-7278

Optergy Proton/Enterprise devices have an Unauthenticated SMS Sending Service...

6.5CVSS7.3AI score0.01516EPSS
Exploits0References3
Rows per page
Query Builder