📦 Mypro

CVE-2025-24865 allows unauthenticated access to the mySCADA myPRO Manager administrative web interface. Attackers can retrieve sensitive information and upload files without credentials. This affects ...

CVE-2024-4708 is a critical vulnerability in mySCADA myPRO software where attackers can use a hard-coded password to gain unauthorized access and execute arbitrary code remotely. This affects all orga...

CVE-2021-43981 is a critical OS command injection vulnerability in mySCADA myPRO versions 8.20.0 and earlier. Attackers can execute arbitrary operating system commands through email parameters, potent...

CVE-2021-43985 allows an unauthenticated remote attacker to access mySCADA myPRO systems without authentication or authorization, potentially leading to unauthorized control or data exposure. Affected...

CVE-2021-44453 is a critical command injection vulnerability in mySCADA myPRO's debug interface that allows attackers to execute arbitrary operating system commands through the ping utility. This affe...

This vulnerability allows remote attackers to execute arbitrary operating system commands on mySCADA myPRO systems by injecting malicious commands through the API password parameter. It affects all ve...

mySCADA myPRO Manager stores credentials in cleartext, allowing attackers to read sensitive authentication data. This affects all systems running vulnerable versions of mySCADA myPRO Manager software....

This vulnerability allows authenticated users to inject arbitrary operating system commands in mySCADA myPRO versions 8.26.0 and prior. Attackers with valid credentials can execute commands with the p...

This vulnerability allows authenticated users in mySCADA myPRO systems to inject arbitrary operating system commands through vulnerable parameters. It affects industrial control systems using mySCADA ...

This vulnerability allows authenticated users of mySCADA myPRO versions 8.26.0 and prior to inject arbitrary operating system commands through vulnerable parameters. This could lead to complete system...

CVE-2021-33009 allows unauthenticated remote attackers to upload arbitrary files to the mySCADA myPRO system file system. This affects mySCADA myPRO versions prior to 8.20.0, potentially enabling atta...

CVE-2021-27505 is an information disclosure vulnerability in mySCADA myPRO software where unauthorized users can access sensitive directory listings. This exposes internal system information that coul...

mySCADA myPRO versions 8.20.0 and prior store passwords using the weak MD5 hashing algorithm, which allows attackers who obtain password hashes to crack them relatively easily. This affects industrial...

mySCADA myPRO Manager is vulnerable to cross-site request forgery (CSRF), allowing attackers to trick authenticated users into performing unintended actions that could expose sensitive information. Th...