GE Fanuc Proficy Portal Remote Script Code Execution Vulnerability

Proficy Real Time Information Portal is prone to a remote script-code-execution vulnerability because the application fails to properly sanitize user-supplied input.

A successful exploit can allow an attacker to upload arbitrary scripts and execute them in the context of the application.

Proficy Real Time Information Portal 2.6 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus