Osprey Pump Controller version 1.01 is vulnerable an unauthenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands through a HTTP GET parameter called by DataLogView.php, EventsView.php and AlarmsView.php scripts.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
propumpservice osprey_pump_controller_firmware 1.01 |