A parameter within a command does not properly validate input within myPRO Manager which could …

mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploi…

An authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run commands dir…

mySCADA myDESIGNER Versions 8.20.0 and prior fails to properly validate contents of an imported…

mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploi…

A hardcoded FTP username of myscada and password of Vikuk63 in 'myscadagate.exe' in mySCADA myP…

mySCADA myDESIGNER 8.20.0 and below allows Directory Traversal attacks when importing project f…

The administrative web interface of mySCADA myPRO Manager can be accessed without authenticat…

mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploi…

mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtai…

mySCADA myPRO 7 allows remote attackers to discover all ProjectIDs in a project by sending all …

mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote att…

An OS Command Injection vulnerability exists within myPRO Manager. A parameter within a command…

An unauthenticated remote attacker can access mySCADA myPRO Versions 8.20.0 and prior without a…

mySCADA myPRO: Versions 8.20.0 and prior has a vulnerable debug interface which includes a ping…

mySCADA myPRO versions prior to 8.20.0 allows an unauthenticated remote attacker to upload arbi…

An authenticated user may be able to misuse parameters to inject arbitrary operating system com…

mySCADA myPRO: Versions 8.20.0 and prior has a feature where the firmware can be updated, which…

mySCADA myPRO: Versions 8.20.0 and prior has a feature to send emails, which may allow an attac…

mySCADA myPRO: Versions 8.20.0 and prior has a feature where the password can be specified, whi…

mySCADA myPRO: Versions 8.20.0 and prior has a feature where the API password can be specified,…

An additional, nondocumented administrative account exists in mySCADA myPRO Versions 8.20.0 and…

mySCADA myPRO does not properly neutralize POST requests sent to a specific port with email inf…

mySCADA myPRO does not properly neutralize POST requests sent to a specific port with version i…

mySCADA myPRO versions prior to 8.20.0 allows an unauthenticated remote attacker to upload arbi…

mySCADA myPRO uses a hard-coded password which could allow an attacker to remotely execute co…

mySCADA myPRO versions prior to 8.20.0 does not restrict unauthorized read access to sensitive …

mySCADA myPRO versions prior to 8.20.0 does not restrict unauthorized read access to sensitive …

The administrative interface listens by default on all interfaces on a TCP port and does not re…

mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploi…

mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploi…

An Unquoted Search Path issue was discovered in mySCADA myPRO Versions 7.0.26 and prior. Applic…

The back-end does not sufficiently verify the user-controlled filename parameter which makes it…

mySCADA myPRO Versions 8.20.0 and prior stores passwords using MD5, which may allow an attacker…

The web application uses a weak authentication mechanism to verify that a request is coming fro…

mySCADA myPRO Manager is vulnerable to cross-site request forgery (CSRF), which could allow a…

A password is exposed locally.