Rob Peters

2 exploits Active since Mar 2019
CVE-2019-10664 WRITEUP CRITICAL WRITEUP
domoticz < 4.10578 - Unauthenticated SQL Injection via idx Parameter in CWebServer::GetFloorplanImage
Domoticz before 4.10578 allows SQL Injection via the idx parameter in CWebServer::GetFloorplanImage in WebServer.cpp.
CVSS 9.8
CVE-2019-10678 WRITEUP HIGH WRITEUP
Domoticz <4.10579 - Info Disclosure
Domoticz before 4.10579 neglects to categorize \n and \r as insecure argument options.
CVSS 7.5