Socomec: >> Remote View Pro Security Vulnerabilities
An issue was discovered in the firmware update form in Socomec REMOTE VIEW PRO 2.0.41.4. An authenticated attacker can bypass a client-side file-type check and upload arbitrary .php files.
CVSS Score
8.8
EPSS Score
0.007
Published
2021-12-15
An issue was discovered in Socomec REMOTE VIEW PRO 2.0.41.4. Improper validation of input into the username field makes it possible to place a stored XSS payload. This is executed if an administrator views the System Event Log.
CVSS Score
5.4
EPSS Score
0.005
Published
2021-12-15