Victor Pasman

**Name of the Vulnerable Software and Affected Versions** Accessibility Suite by Ability, Inc versions prior to 4.21 **Description** The Accessibility Suite by Ability, Inc plugin for WordPress contains a flaw allowing authenticated attackers with Subscriber-level access or higher to perform SQL Injection. This occurs because the `scan id` parameter is not properly escaped and the SQL query is not sufficiently prepared, enabling the execution of additional queries to extract sensitive information from the database. **Recommendations** Update the plugin to a version later than 4.20. As a temporary workaround, restrict access to the `scan id` parameter until the update is applied.

**Name of the Vulnerable Software and Affected Versions** ShineLan-X version 3.6.0.0 **Description** The firmware for ShineLan-X contains hard-coded credentials for an FTP server, enabling insecure FTP connections. This allows an attacker to replace legitimate files with malicious versions, as firmware signature verification is not enforced. **Recommendations** Restrict access to the FTP server. Apply a patch to address the hard-coded credentials.

**Name of the Vulnerable Software and Affected Versions** Growatt ShineLan-X communication dongle (affected versions not specified) **Description** The SWD debug interface on the device is enabled by default. This allows an attacker to gain debug access, potentially enabling the extraction of sensitive information such as secrets or domains stored within the device. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Growatt ShineLan-X communication dongle (affected versions not specified) **Description** The Growatt ShineLan-X communication dongle contains an undocumented backup account with undocumented credentials. This allows significant access to the device, including access to the Setting Center, effectively creating a backdoor for devices utilizing the dongle. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Growatt ShineLan-X and MIC 3300TL-X (affected versions not specified) **Description** A lack of encryption on the configuration interface for Growatt ShineLan-X and MIC 3300TL-X allows an attacker with network access to intercept and potentially manipulate communication requests between the inverter and its cloud endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ShineLan-X (affected versions not specified) **Description** The software contains a stored cross site scripting (XSS) issue in the `Plant Name` field. A malicious HTML payload can be displayed on the plant management page through a direct post, potentially allowing an attacker to execute malicious code within a legitimate user's browser. The issue involves the injection of a crafted payload via the `Plant Name` field. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** versions prior to 2025 (affected versions not specified) **Description** The authentication mechanism on the web interface is flawed, allowing bypass of authentication checks through crafted POST requests with new settings. This is due to the absence of session tokens or authentication measures. An attacker could redirect the device to an arbitrary address for domain name resolution, potentially enabling a man-in-the-middle (MitM) attack. The vulnerability involves crafting a POST request to manipulate settings without proper authentication. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ShineLan-X (affected versions not specified) **Description** The software contains a stored cross site scripting (XSS) issue within the local configuration web server. An attacker could inject a JavaScript code snippet into the settings center of the communication module. This could lead to the execution of malicious code within a legitimate user's browser. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SolarEdge SE3680H (affected versions not specified) **Description** The SolarEdge SE3680H device exhibits an unauthenticated disclosure of sensitive information during the bootloader loop. During device initialization and while awaiting boot instructions, the bootloader emits diagnostic output, potentially revealing operating system information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SolarEdge SE3680H (affected versions not specified) **Description** The SolarEdge SE3680H ships with an outdated Linux kernel that has unpatched flaws in core subsystems. An attacker with network or local access could potentially achieve remote code execution, escalate privileges, or disclose sensitive information by exploiting these flaws. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SolarEdge monitoring platform (affected versions not specified) **Description** The SolarEdge monitoring platform has a Cross-Site Scripting (XSS) flaw. An authenticated user can inject payloads into report names. These payloads may execute in a victim’s browser when a deletion attempt is made. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CleverDisplay BlueOne (affected versions not specified) **Description** The CleverDisplay BlueOne hardware player allows access to the BIOS setup interface by connecting a USB keyboard and pressing ESC during boot after bypassing the device’s physical enclosure. This exposes internal system information, potentially increasing the attack surface. The device is designed with its USB interfaces physically enclosed and inaccessible under normal operating conditions. The issue does not allow integrity or availability compromise under standard or tested configurations. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SolarEdge SE3680H (affected versions not specified) **Description** The SolarEdge SE3680H device has a debug/test interface that is accessible without authentication. This allows unauthorized individuals to view internal system information and execute debug commands. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ComfortKey versions prior to 24.1.2 **Description** A Local File Inclusion issue has been found in ComfortKey, allowing an unauthenticated attacker to retrieve sensitive system information. **Recommendations** For versions prior to 24.1.2, update to version 24.1.2 to resolve the issue. As a temporary workaround, consider restricting access to sensitive system files until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Priva TopControl Suite (affected versions not specified) **Description** The Priva TopControl Suite contains predictable credentials for the SSH service, based on the Serial number. This makes it possible for an attacker to calculate the login credentials for the Priva TopControl suite. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned in the provided descriptions. **Description** The issue allows an authenticated attacker to create alerts that trigger a stored XSS attack. This means an attacker with authentication credentials can create malicious alerts that, when triggered, execute malicious scripts stored on the victim's browser, potentially leading to unauthorized actions or data theft. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned. **Description** The issue allows an authenticated administrator to remotely execute arbitrary shell commands via the API. This could potentially lead to unauthorized access and control of the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned. **Description** The issue allows an attacker to launch a Reflected XSS attack using a crafted URL. This type of attack occurs when an application takes user input and reflects it back to the user without proper validation or encoding, allowing an attacker to inject malicious code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions mentioned **Description** The issue allows an authenticated administrator to craft an alert that can execute a Server-Side Request Forgery (SSRF) attack, but only with POST requests. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned. **Description** The issue allows local users to execute scripts under root privileges. This means that users with local access can potentially run commands or scripts with elevated privileges, posing a significant security risk. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.