Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
SmartpttSmartptt Scada

4 matches found

CVE
CVEadded 2022/04/28 3:15 p.m.89 views

CVE-2021-43932

Elcomplus SmartPTT is vulnerable when an attacker injects JavaScript code into a specific parameter that can executed upon accessing the dashboard or the main page.

9CVSS7.7AI score0.00182EPSS
CVE
CVEadded 2022/04/28 3:15 p.m.79 views

CVE-2021-43934

Elcomplus SmartPTT is vulnerable as the backup and restore system does not adequately validate upload requests, enabling a malicious user to potentially upload arbitrary files.

9.8CVSS9.6AI score0.00252EPSS
CVE
CVEadded 2022/04/28 3:15 p.m.69 views

CVE-2021-43939

Elcomplus SmartPTT is vulnerable when a low-authenticated user can access higher level administration authorization by issuing requests directly to the desired endpoints.

9CVSS8.7AI score0.00101EPSS
CVE
CVEadded 2022/04/28 3:15 p.m.61 views

CVE-2021-43930

Elcomplus SmartPTT is vulnerable as the backup and restore system does not adequately validate download requests, enabling malicious users to perform path traversal attacks and potentially download arbitrary files from the system.

4.9CVSS5.6AI score0.00252EPSS