Ptc: >> Thingworx Platform >> 7.0.2 Security Vulnerabilities
PTC ThingWorx Platform through 8.3.0 is vulnerable to a directory traversal attack on ZIP files via a POST request.
CVSS Score
7.5
EPSS Score
0.004
Published
2018-12-17
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is password hash exposure to privileged users.
CVSS Score
6.5
EPSS Score
0.004
Published
2018-10-01
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is a hardcoded encryption key.
CVSS Score
7.5
EPSS Score
0.002
Published
2018-10-01
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is reflected XSS in the SQUEAL search function.
CVSS Score
5.4
EPSS Score
0.003
Published
2018-10-01