[FD] Remote Code Execution in Kardex MLOG

nufacturer Notification: 2022-12-13 Solution Date: 2023-01-24 Public Disclosure: 2023-02-07 CVE Reference: CVE-2023-22855 Authors of Advisory: Patrick Hener & Nico Viakowski === Vendor

[FD] [TO-2021-001] WebACMS 2.1.0 - Cross-Site Scripting

: Unfixed Manufacturer Notification: 2021-12-13 Solution Date: 2022-01-17 Public Disclosure: 2022-01-20 CVE Reference: CVE-2021-44829 Authors of Advisory: Patrick Hener & Siva Rajendran, Thinking Objects GmbH Overview:

[FD] [SYSS-2020-025] DOMOS 5.8 - OS Command Injection

ion: 2020-06-17 Solution Date: 2020-08-12 Public Disclosure: 2020-09-28 CVE Reference: CVE-2020-14293 Author of Advisory: Patrick Hener, SySS GmbH Overview: DOMOS is a hardened operating system of Secudos GmbH. This operat

[FD] [SYSS-2020-024] Qiata FTA - Persistent Cross-Site Scripting

ved Manufacturer Notification: 2020-06-17 Solution Date: 2020-08-12 Public Disclosure: 2020-09-28 CVE Reference: CVE-2020-14294 Author of Advisory: Patrick Hener, SySS GmbH Overview: Qiata FTA is a secure file transfer applia