Auo: >> Solar Data Recorder Security Vulnerabilities
An issue was discovered in AUO Solar Data Recorder before 1.3.0. The web portal uses HTTP Basic Authentication and provides the account and password in the WWW-Authenticate attribute. By using this account and password, anyone can login successfully.
CVSS Score
9.8
EPSS Score
0.037
Published
2019-06-03
Stored XSS was discovered in AUO Solar Data Recorder before 1.3.0 via the protect/config.htm addr parameter.
CVSS Score
5.4
EPSS Score
0.009
Published
2019-06-03