📦 Viewpower

This is an unauthenticated SQL injection vulnerability in Voltronic Power ViewPower Pro that allows remote attackers to execute arbitrary code. Attackers can exploit this without credentials to run co...

This vulnerability allows unauthenticated remote attackers to upload arbitrary files to Voltronic Power ViewPower Pro systems, leading to remote code execution. Attackers can execute commands with LOC...

This vulnerability allows unauthenticated remote attackers to execute arbitrary code on Voltronic Power ViewPower Pro systems by exploiting expression language injection in the Struts2 dependency. Aff...

This vulnerability allows unauthenticated remote attackers to execute arbitrary code with SYSTEM privileges on Voltronic Power ViewPower installations. The flaw exists in the UpsScheduler class where ...

This is a critical SQL injection vulnerability in Voltronic Power ViewPower Pro that allows unauthenticated remote attackers to execute arbitrary code. Attackers can exploit the selectEventConfig meth...

This vulnerability allows remote attackers to execute arbitrary code on Voltronic Power ViewPower installations without authentication. The exposed dangerous method in the MacMonitorConsole class enab...

This vulnerability allows remote attackers to bypass authentication on Voltronic Power ViewPower systems without requiring credentials. The exposed updateManagerPassword method enables complete authen...

This vulnerability allows unauthenticated remote attackers to execute arbitrary code with SYSTEM privileges on Voltronic Power ViewPower systems. The flaw exists in the RMI interface on TCP port 51099...

This vulnerability allows unauthenticated remote attackers to execute arbitrary system commands on Voltronic Power ViewPower Pro installations. Attackers can exploit a command injection flaw in the ge...

This vulnerability allows unauthenticated remote attackers to execute arbitrary code with SYSTEM privileges on Voltronic Power ViewPower Pro installations. The flaw exists in the RMI interface on TCP ...

This vulnerability allows local attackers with initial low-privileged access to escalate to SYSTEM privileges on Voltronic Power ViewPower Pro installations. Attackers exploit hard-coded MySQL databas...

This vulnerability allows remote attackers to execute arbitrary code on Voltronic Power ViewPower Pro systems by injecting malicious commands into the shutdown operation. Attackers can gain code execu...

This vulnerability allows remote attackers to cause denial-of-service conditions on Voltronic Power ViewPower systems without authentication. The exposed dangerous method in the MonitorConsole class c...