Blaauwproducts - Remote Kiln Control CVE

Filtered by vendor Blaauwproducts Subscribe

Filtered by product Remote Kiln Control

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-18868	1 Blaauwproducts	1 Remote Kiln Control	2021-07-21	5.0 MEDIUM	9.8 CRITICAL
Blaauw Remote Kiln Control through v3.00r4 allows an unauthenticated attacker to access MySQL credentials in cleartext in /engine/db.inc, /lang/nl.bak, or /lang/en.bak.
CVE-2019-18869	1 Blaauwproducts	1 Remote Kiln Control	2020-05-12	7.5 HIGH	9.8 CRITICAL
Leftover Debug Code in Blaauw Remote Kiln Control through v3.00r4 allows a user to execute arbitrary php code via /default.php?idx=17.

Vulnerabilities (CVE)