Orion Application Server version 1.5.2b suffers from a cross site scripting vulnerability.
e8b76a130b9da2780fd376421f312812aed4091b14fe1f3ce24cacfde9bcbf57
Honeywell MCR Web Controller suffers from cross site scripting and path disclosure vulnerabilities. Versions affected include XL1000C50 EXCEL WEB 52 I/O, XL1000C500 EXCEL WEB 300 I/O, XL1000C100 EXCEL WEB 104 I/O, XL1000C1000 EXCEL WEB 600 I/O, XL1000C50U EXCEL WEB 52 I/O UUKL, XL1000C500U EXCEL WEB 300 I/O UUKL, XL1000C100U EXCEL WEB 104 I/O UUKL, and XL1000C1000U EXCEL WEB 600 I/O UUKL.
2aaa504478d3a854e20d1fffd67a8f408413f384ad995c1c8168860b53a92ff3
AirOS NanoStation M2 version 5.6-beta suffers from arbitrary file download and remote command execution vulnerabilities.
3ddab30cdd87f40d54e6b180428a988618f8d325f7556d7093973d1ac3342f6a