2 matches found
PT-2023-29965 · Unknown · Solar-Log Base 15 Firmware
Name of the Vulnerable Software and Affected Versions: Solar-Log Base 15 Firmware version 6.0.1 Build 161 Description: A stored cross-site scripting XSS vulnerability in the switch group function under the /ilang=DE&b=c smartenergy swgroups endpoint in the web portal allows an attacker to escalat...
PT-2014-08: Password Access in Solar-Log
The specialists of the Positive Research center have detected a Password Access vulnerability in Solar-Log. Application uses some kind of "encryption" for password stored in the configuration file with a static key. Attacker can get a password in plain text. How to fix Update your firmware up to...