Back to directory
WRITEUP #179

Hacking a Secure Industrial Remote Access Gateway

XSSOS command injectionHardcoded secretsIndustrial system (OT)
by@moritz_abrell(Moritz Abrell)
Program
HMS (Ewon Cosy+)
Published
Jul 12, 2024
Added to HackDex
Aug 26, 2024
Read Full Writeuphttps://blog.syss.com/posts/hacking-a-secure-industrial-remote-access-gateway/
RELATED WRITEUPS
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
Self-XSS to ATO via Site Features
XSSSelf-XSS
How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack
XSS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN
XSSCSP bypass

Built with ❤️ by Shubham Rawat